LDAP: Samba LDAP Server libldb Infinite Loop Denial of Service
This signature detects an attempt to a known vulnerability in Samba LDAP server. The vulnerability is due to a error in processing certain LDAP requests by the libldb library used by the Samba daemon. Successful exploitation could allow an attacker to cause a denial-of-service condition and could lead to further attacks.
Extended Description
The ldb_wildcard_compare function in ldb_match.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service (infinite loop) via crafted packets.
Affected Products
Samba samba
Short Name
LDAP:SAMBALDAP-LIBLDB
Severity
Major
Recommended
True
Recommended Action
Drop
Category
LDAP
Keywords
CVE-2015-3223 Denial Infinite LDAP Loop Samba Server Service libldb of
Release Date
01/12/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Samba
CVSS Score
5.0