← Volver a CVEs

CVE-2013-0214

N/A

Descripcion

Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado2/2/2013

Ultima modificacion4/11/2025

Fuentenvd

Avistamientos honeypot0

Productos afectados

samba:samba

Debilidades (CWE)

CWE-352

Referencias

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00019.html(secalert@redhat.com)

http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00042.html(secalert@redhat.com)

http://lists.opensuse.org/opensuse-updates/2013-02/msg00029.html(secalert@redhat.com)

http://lists.opensuse.org/opensuse-updates/2013-02/msg00033.html(secalert@redhat.com)

http://osvdb.org/89627(secalert@redhat.com)

http://rhn.redhat.com/errata/RHSA-2013-1310.html(secalert@redhat.com)

http://rhn.redhat.com/errata/RHSA-2013-1542.html(secalert@redhat.com)

http://rhn.redhat.com/errata/RHSA-2014-0305.html(secalert@redhat.com)

http://www.debian.org/security/2013/dsa-2617(secalert@redhat.com)

http://www.samba.org/samba/security/CVE-2013-0214(secalert@redhat.com)

http://www.securityfocus.com/bid/57631(secalert@redhat.com)

http://www.ubuntu.com/usn/USN-2922-1(secalert@redhat.com)

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05115993(secalert@redhat.com)

http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00019.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00042.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-updates/2013-02/msg00029.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-updates/2013-02/msg00033.html(af854a3a-2127-422b-91ae-364da2661108)

http://osvdb.org/89627(af854a3a-2127-422b-91ae-364da2661108)

http://rhn.redhat.com/errata/RHSA-2013-1310.html(af854a3a-2127-422b-91ae-364da2661108)

http://rhn.redhat.com/errata/RHSA-2013-1542.html(af854a3a-2127-422b-91ae-364da2661108)

http://rhn.redhat.com/errata/RHSA-2014-0305.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.debian.org/security/2013/dsa-2617(af854a3a-2127-422b-91ae-364da2661108)

http://www.samba.org/samba/security/CVE-2013-0214(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/57631(af854a3a-2127-422b-91ae-364da2661108)

http://www.ubuntu.com/usn/USN-2922-1(af854a3a-2127-422b-91ae-364da2661108)

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05115993(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.