What is the severity of CVE-2018-16853?

CVE-2018-16853 has been classified as a moderate severity vulnerability affecting Samba AD domains.

How do I fix CVE-2018-16853?

To fix CVE-2018-16853, upgrade Samba to a version higher than 4.7.12, 4.8.7, or 4.9.3, depending on your installed version.

Who is affected by CVE-2018-16853?

CVE-2018-16853 affects users operating a Samba Active Directory domain that is built with the MIT Kerberos configuration.

What types of vulnerabilities does CVE-2018-16853 represent?

CVE-2018-16853 represents a denial-of-service vulnerability where a user can crash the Key Distribution Center (KDC).

Is the MIT Kerberos build of Samba stable according to CVE-2018-16853?

The MIT Kerberos build of Samba is considered experimental and may not be stable as highlighted by CVE-2018-16853.

Vulnerability/
CVE-2018-16853

high

7.5

CWE

400

28/11/2018

5/8/2024

CVE-2018-16853

First published: Wed Nov 28 2018(Updated: )

Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the non-default MIT Kerberos configuration. With this advisory the Samba Team clarify that the MIT Kerberos build of the Samba AD DC is considered experimental. Therefore the Samba Team will not issue security patches for this configuration. Additionally, Samba 4.7.12, 4.8.7 and 4.9.3 have been issued as security releases to prevent building of the AD DC with MIT Kerberos unless --with-experimental-mit-ad-dc is specified to the configure command.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Samba	>=4.7.0<4.7.12
Samba	>=4.8.0<4.8.7
Samba	>=4.9.0<4.9.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-16853?
CVE-2018-16853 has been classified as a moderate severity vulnerability affecting Samba AD domains.
How do I fix CVE-2018-16853?
To fix CVE-2018-16853, upgrade Samba to a version higher than 4.7.12, 4.8.7, or 4.9.3, depending on your installed version.
Who is affected by CVE-2018-16853?
CVE-2018-16853 affects users operating a Samba Active Directory domain that is built with the MIT Kerberos configuration.
What types of vulnerabilities does CVE-2018-16853 represent?
CVE-2018-16853 represents a denial-of-service vulnerability where a user can crash the Key Distribution Center (KDC).
Is the MIT Kerberos build of Samba stable according to CVE-2018-16853?
The MIT Kerberos build of Samba is considered experimental and may not be stable as highlighted by CVE-2018-16853.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/weakness
agent/last-modified-date
agent/references
agent/event
agent/first-publish-date
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/samba
canonical/samba
version/samba/4.7.0
version/samba/4.8.0
version/samba/4.9.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.