{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-07-26T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-12T17:57:02", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "MDVSA-2011:121", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"}, {"name": "74071", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/74071"}, {"name": "HPSBNS02701", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"name": "SSRT100664", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"name": "HPSBUX02768", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"name": "1025852", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1025852"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"}, {"name": "DSA-2290", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2011/dsa-2290"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.samba.org/samba/security/CVE-2011-2522"}, {"name": "45393", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45393"}, {"name": "45496", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45496"}, {"name": "45488", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45488"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://samba.org/samba/history/samba-3.5.10.html"}, {"name": "SSRT100598", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"name": "17577", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/17577"}, {"name": "8317", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/8317"}, {"name": "JVN#29529126", "tags": ["third-party-advisory", "x_refsource_JVN"], "url": "http://jvn.jp/en/jp/JVN29529126/index.html"}, {"name": "USN-1182-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://ubuntu.com/usn/usn-1182-1"}, {"name": "48899", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/48899"}, {"name": "samba-swat-csrf(68843)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2011-2522", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "MDVSA-2011:121", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"}, {"name": "74071", "refsource": "OSVDB", "url": "http://osvdb.org/74071"}, {"name": "HPSBNS02701", "refsource": "HP", "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"name": "SSRT100664", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"name": "HPSBUX02768", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"name": "1025852", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1025852"}, {"name": "https://bugzilla.samba.org/show_bug.cgi?id=8290", "refsource": "CONFIRM", "url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"}, {"name": "DSA-2290", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2011/dsa-2290"}, {"name": "http://www.samba.org/samba/security/CVE-2011-2522", "refsource": "CONFIRM", "url": "http://www.samba.org/samba/security/CVE-2011-2522"}, {"name": "45393", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45393"}, {"name": "45496", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45496"}, {"name": "45488", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45488"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=721348", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"}, {"name": "http://samba.org/samba/history/samba-3.5.10.html", "refsource": "CONFIRM", "url": "http://samba.org/samba/history/samba-3.5.10.html"}, {"name": "SSRT100598", "refsource": "HP", "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"name": "17577", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/17577"}, {"name": "8317", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/8317"}, {"name": "JVN#29529126", "refsource": "JVN", "url": "http://jvn.jp/en/jp/JVN29529126/index.html"}, {"name": "USN-1182-1", "refsource": "UBUNTU", "url": "http://ubuntu.com/usn/usn-1182-1"}, {"name": "48899", "refsource": "BID", "url": "http://www.securityfocus.com/bid/48899"}, {"name": "samba-swat-csrf(68843)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T23:00:34.288Z"}, "title": "CVE Program Container", "references": [{"name": "MDVSA-2011:121", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"}, {"name": "74071", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/74071"}, {"name": "HPSBNS02701", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"name": "SSRT100664", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"name": "HPSBUX02768", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"name": "1025852", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1025852"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"}, {"name": "DSA-2290", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2011/dsa-2290"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.samba.org/samba/security/CVE-2011-2522"}, {"name": "45393", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45393"}, {"name": "45496", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45496"}, {"name": "45488", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45488"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://samba.org/samba/history/samba-3.5.10.html"}, {"name": "SSRT100598", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"name": "17577", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "http://www.exploit-db.com/exploits/17577"}, {"name": "8317", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/8317"}, {"name": "JVN#29529126", "tags": ["third-party-advisory", "x_refsource_JVN", "x_transferred"], "url": "http://jvn.jp/en/jp/JVN29529126/index.html"}, {"name": "USN-1182-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://ubuntu.com/usn/usn-1182-1"}, {"name": "48899", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/48899"}, {"name": "samba-swat-csrf(68843)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-2522", "datePublished": "2011-07-29T20:00:00", "dateReserved": "2011-06-15T00:00:00", "dateUpdated": "2024-08-06T23:00:34.288Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*", "matchCriteriaId": "3A7FE6F3-F8CF-46C6-94B8-2717A3BBA803", "versionEndExcluding": "3.3.16", "versionStartIncluding": "3.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*", "matchCriteriaId": "5559D1ED-F753-4842-9F4A-F78C54817835", "versionEndExcluding": "3.4.14", "versionStartIncluding": "3.4.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*", "matchCriteriaId": "7738DB4A-F424-481F-93C0-4C1DEBABAABD", "versionEndExcluding": "3.5.10", "versionStartIncluding": "3.5.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "8C757774-08E7-40AA-B532-6F705C8F7639", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*", "matchCriteriaId": "7EBFE35C-E243-43D1-883D-4398D71763CC", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*", "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*", "matchCriteriaId": "EF49D26F-142E-468B-87C1-BABEA445255C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program."}, {"lang": "es", "value": "Varias vulnerabilidades de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en la herramienta Samba Web Administration (SWAT) en Samba v3.x antes de v3.5.10 permite a atacantes remotos secuestrar la autenticaci\u00f3n de los administradores para las peticiones que (1) apagan los demonios, (2) inician los demonios, (3) agregan recursos compartidos, (4) quitan recursos compartidos, (5) agregan impresoras, (6) eliminan impresoras (7), agregan cuentas de usuario, o (8) quitan cuentas de usuario, como lo demuestran ciertos par\u00e1metros de inicio, parada, y reinicio del programa de estado."}], "id": "CVE-2011-2522", "lastModified": "2024-11-21T01:28:27.390", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-07-29T20:55:02.157", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://jvn.jp/en/jp/JVN29529126/index.html"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"source": "secalert@redhat.com", "tags": ["Broken Link"], "url": "http://osvdb.org/74071"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://samba.org/samba/history/samba-3.5.10.html"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/45393"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/45488"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/45496"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://securityreason.com/securityalert/8317"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://securitytracker.com/id?1025852"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://ubuntu.com/usn/usn-1182-1"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2011/dsa-2290"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://www.exploit-db.com/exploits/17577"}, {"source": "secalert@redhat.com", "tags": ["Broken Link"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"source": "secalert@redhat.com", "tags": ["Broken Link"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"source": "secalert@redhat.com", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://www.samba.org/samba/security/CVE-2011-2522"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/48899"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://jvn.jp/en/jp/JVN29529126/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=133527864025056&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://osvdb.org/74071"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://samba.org/samba/history/samba-3.5.10.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/45393"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/45488"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/45496"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://securityreason.com/securityalert/8317"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://securitytracker.com/id?1025852"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://ubuntu.com/usn/usn-1182-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2011/dsa-2290"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://www.exploit-db.com/exploits/17577"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:121"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.samba.org/samba/security/CVE-2011-2522"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/48899"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch", "Third Party Advisory"], "url": "https://bugzilla.samba.org/show_bug.cgi?id=8290"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68843"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank Samba project for reporting this issue.", "affected_release": [{"advisory": "RHSA-2011:1219", "cpe": "cpe:/o:redhat:enterprise_linux:4", "package": "samba-0:3.0.33-0.34.el4", "product_name": "Red Hat Enterprise Linux 4", "release_date": "2011-08-29T00:00:00Z"}, {"advisory": "RHSA-2011:1219", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "samba-0:3.0.33-3.29.el5_7.4", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2011-08-29T00:00:00Z"}, {"advisory": "RHSA-2011:1220", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "samba3x-0:3.5.4-0.83.el5_7.2", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2011-08-29T00:00:00Z"}, {"advisory": "RHSA-2011:1221", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "cifs-utils-0:4.8.1-2.el6_1.2", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2011-08-29T00:00:00Z"}, {"advisory": "RHSA-2011:1221", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "samba-0:3.5.6-86.el6_1.4", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2011-08-29T00:00:00Z"}], "bugzilla": {"description": "(SWAT): Absent CSRF protection in various Samba web configuration formulars", "id": "721348", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721348"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "verified"}, "cwe": "CWE-352", "details": ["Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program."], "name": "CVE-2011-2522", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "samba4", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2011-07-26T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2011-2522\nhttps://nvd.nist.gov/vuln/detail/CVE-2011-2522"], "threat_severity": "Moderate", "upstream_fix": "samba 3.5.10"}