Samba 3.0.21 <= 3.0.21c Vulnerability (CVE-2006-1059)

Exposure of machine account credentials in winbind log files.

The machine trust account password is the secret shared between a domain controller and a specific member server. Access to the member server machine credentials allows an attacker to impersonate the server in the domain and gain access to additional information regarding domain users and groups. The winbindd daemon included in Samba 3.0.21 and subsequent patch releases (3.0.21a-c) writes the clear text of server's machine credentials to its log file at level 5. The winbindd log files are world readable by default and often log files are requested on open mailing lists as tools used to debug server misconfigurations. This affects servers configured to use domain or ads security and possibly Samba domain controllers as well (if configured to use winbindd).

Samba versions 3.0.21 through 3.0.21c.

Checks if a vulnerable version is present on the target host.

Update to version 3.0.22 or later.