[Samba] Samba impact of "ZeroLogin" CVE-2020-1472
Marco Gaiarin
gaio at sv.lnf.it
Tue Sep 22 16:43:42 UTC 2020
Mandi! Andrew Bartlett via samba
In chel di` si favelave...
> If you don't have any trusted domains then the big thing is an attacker
> being able to remove a member server from the domain, or get session
> keys (assisting a takeover 'MITM attack' of an existing session).
So, effectively, on NT domain the attack surface of the bug is reduced?
If i've understood well the paper, in AD (but speak only about
Microsoft AD DC, if again i've understood well) an attacker can
completely take over the domain, escalating until Administrator's
credential.
In NT mode this is not effectively possible?
Thanks.
--
dott. Marco Gaiarin GNUPG Key ID: 240A3D66
Associazione ``La Nostra Famiglia'' http://www.lanostrafamiglia.it/
Polo FVG - Via della Bontà, 7 - 33078 - San Vito al Tagliamento (PN)
marco.gaiarin(at)lanostrafamiglia.it t +39-0434-842711 f +39-0434-842797
Dona il 5 PER MILLE a LA NOSTRA FAMIGLIA!
http://www.lanostrafamiglia.it/index.php/it/sostienici/5x1000
(cf 00307430132, categoria ONLUS oppure RICERCA SANITARIA)
More information about the samba
mailing list