Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

None

Attack Vector

Network

0

CVE-2015-5296

Disclosure Date: December 29, 2015 •

CVE-2015-5296 CVSS v3 Base Score: 5.4

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 supports connections that are encrypted but unsigned, which allows man-in-the-middle attackers to conduct encrypted-to-unencrypted downgrade attacks by modifying the client-server data stream, related to clidfs.c, libsmb_server.c, and smbXcli_base.c.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

5.4 Medium

Impact Score:

2.7

Exploitability Score:

2.2

Vector:

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

Attack Vector (AV):

Network

Attack Complexity (AC):

High

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Changed

Confidentiality (C):

Low

Integrity (I):

Low

Availability (A):

None

Vendors

canonical,
debian,
samba

Products

debian linux 7.0,
debian linux 8.0,
samba,
ubuntu linux 12.04,
ubuntu linux 14.04,
ubuntu linux 15.04,
ubuntu linux 15.10

References

Canonical

CVE-2015-5296 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5296)

BID-79732 (http://www.securityfocus.com/bid/79732)

Advisory

https://git.samba.org?p=samba.git;a=commit;h=a819d2b440aafa3138d95ff6e8b824da885a70e9

FEDORA-2015-0e0879cc8a (http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174391.html)

https://git.samba.org?p=samba.git;a=commit;h=1ba49b8f389eda3414b14410c7fbcb4041ca06b1

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00042.html

USN-2855-2 (http://www.ubuntu.com/usn/USN-2855-2)

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00002.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00019.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00017.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00032.html

FEDORA-2015-b36076d32e (http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174076.html)

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00047.html

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05115993

https://git.samba.org?p=samba.git;a=commit;h=d724f835acb9f4886c0001af32cd325dbbf1f895

SECTRACK-1034493 (http://www.securitytracker.com/id/1034493)

DSA-3433 (http://www.debian.org/security/2016/dsa-3433)

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00048.html

http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

GLSA-201612-47 (https://security.gentoo.org/glsa/201612-47)

https://bugzilla.redhat.com/show_bug.cgi?id=1290292

https://www.samba.org/samba/security/CVE-2015-5296.html

USN-2855-1 (http://www.ubuntu.com/usn/USN-2855-1)

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00033.html

Rapid7

Technical Analysis