| Severity |
|
| Remote |
|
| Type |
| - |
Unknown |
| + |
Privilege escalation |
|
| Description |
| + |
A security issue has been found in Samba versions 4.0.0 to 4.15.1. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise. |
|
| References |
| + |
https://www.samba.org/samba/security/CVE-2020-25719.html |
| + |
https://www.samba.org/samba/ftp/patches/security/samba-4.15.1-security-2021-11-09.patch |
|