<div dir="ltr"><div class="gmail_default" style="font-family:georgia,serif">Samba has been flagged out-of-date since <span id="vulnDetailDisplay"><span class="">2014-03-12.  <br></span></span></div><div class="gmail_default" style="font-family:georgia,serif">

<span id="vulnDetailDisplay"><span class="">Two CVE's were issued </span></span>2014-03-14.<br><br><div class="gmail_default" style="font-family:georgia,serif">*Solution*<br></div>Upgrade [extra] samba to 4.1.6. <br>
<br>
<span id="vulnDetailDisplay"><span class=""></span>*Summary*<br></span></div><div class="gmail_default" style="font-family:georgia,serif"><span id="vulnDetailDisplay">CVE-2013-4496:<br>Samba 3.x before 3.6.23, 4.0.x before 
4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing 
protection mechanism for all interfaces, which makes it easier for 
remote attackers to obtain access via brute-force ChangePasswordUser2 
(1) SAMR or (2) RAP attempts.</span><br></div><div class="gmail_default" style="font-family:georgia,serif"><br>CVE-2013-6442<br>Samba versions 4.0.0 and above have a flaw in the smbcacls command. If
smbcacls is used with the "-C|--chown name" or "-G|--chgrp name"
command options it will remove the existing ACL on the object being
modified, leaving the file or directory unprotected.<br></div><div class="gmail_default" style="font-family:georgia,serif"><br></div><div class="gmail_default" style="font-family:georgia,serif">*Links*<br></div><div class="gmail_default" style="font-family:georgia,serif">

<a href="http://www.samba.org/samba/security/CVE-2013-4496">http://www.samba.org/samba/security/CVE-2013-4496</a><br><a href="http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4496">http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4496</a><br>

<a href="http://www.samba.org/samba/security/CVE-2013-6442">http://www.samba.org/samba/security/CVE-2013-6442</a><br><a href="http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6442">http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6442</a><br>

<br></div><div class="gmail_default" style="font-family:georgia,serif"><br></div><div class="gmail_default" style="font-family:georgia,serif"><br clear="all"></div><div><div dir="ltr"><div><div><span style="font-family:georgia,serif">------------------------------------------</span><span style="font-family:georgia,serif"><span style="font-family:georgia,serif"><span style="font-family:georgia,serif"><font>[00(01|10)11]</font></span></span>-----------------------------------------<br>

<br><font>Billy Wayne McCann, Ph.D.<br><a href="https://plus.google.com/+BillyWayneMcCann" target="_blank">Google+</a><br></font></span></div><span style="font-family:georgia,serif"><font><a href="http://pgp.mit.edu/pks/lookup?op=get&search=0x223A2CAA56146040" target="_blank">PGP Key</a><br>

</font></span></div><div><span style="font-family:georgia,serif"><font>irc://irc.freenode.net:bwayne<br></font></span><span style="font-family:georgia,serif"><font>

</font></span><p style="margin:0px;text-indent:0px"><span style="font-family:georgia,serif">MzM0LTcwMy0wMTIyCg== | base64 -d<br></span></p><span style="font-family:georgia,serif"><font><br>"A rich man will always desire what his wealth cannot acquire." ~ Faust (Goethe)<br>

</font></span></div><span style="font-family:georgia,serif"></span><br><span style="font-family:georgia,serif"></span><div><span style="font-family:georgia,serif">------------------------------------------</span><span style="font-family:georgia,serif"><span style="font-family:georgia,serif"><font>[11(10|01)00]-------</font></span>-----------------------------------</span></div>

</div></div>
</div>