¡¾Îó²îͨ¸æ¡¿Samba 7Ô¶à¸öÇå¾²Îó²î
Ðû²¼Ê±¼ä 2022-07-280x00 Îó²î¸ÅÊö
2022Äê7ÔÂ27ÈÕ£¬£¬£¬£¬£¬SambaÐû²¼Ç徲ͨ¸æ£¬£¬£¬£¬£¬ÐÞ¸´ÁËSambaÈí¼þÖеÄ5¸öÇå¾²Îó²î£¬£¬£¬£¬£¬ÕâЩÎó²î¿ÉÄܵ¼ÖÂÐÅϢй¶¡¢¾Ü¾øÐ§ÀÍÒÔ¼°½ÓÊÜÓòµÈ¡£¡£¡£¡£¡£
0x01 Îó²îÏêÇé
SambaÊÇÓÃÓÚLinuxºÍUnixµÄ±ê×¼Windows»¥²Ù×÷ÐÔ³ÌÐòÌ×¼þ£¬£¬£¬£¬£¬Ö¼ÔÚÌṩÇå¾²¡¢Îȹ̺ͿìËÙµÄÎļþºÍ´òӡЧÀÍ¡£¡£¡£¡£¡£±ðµÄ£¬£¬£¬£¬£¬Samba Êǽ« Linux/Unix ЧÀÍÆ÷ºÍ×ÀÃæÎ޷켯³Éµ½ Active Directory ÇéÐÎÖеÄÖ÷Òª×é¼þ£¬£¬£¬£¬£¬Ëü¼È¿ÉÒÔÓÃ×÷Óò¿ØÖÆÆ÷£¬£¬£¬£¬£¬Ò²¿ÉÒÔÓÃ×÷ͨÀýÓò³ÉÔ±¡£¡£¡£¡£¡£
±¾´ÎÐÞ¸´µÄ5¸öÎó²îÏêÇéÈçÏ£º
CVE-ID | Ãû³Æ | ÐÎò | ÆÀ·Ö | Ó°Ïì¹æÄ£ |
CVE-2022-2031 | ÃÜÂë¸ü¸ÄÏÞÖÆÈÆ¹ýÎó²î | 4.16ÒÔϰ汾µÄSambaÒÔ¼°Ê¹ÓÃMIT Kerberos¹¹½¨µÄSambaÖб£´æÇå¾²ÎÊÌ⣬£¬£¬£¬£¬µ¼Ö KDC ½ÓÊÜ kpasswd Ʊ¾Ý£¬£¬£¬£¬£¬±»ÇëÇó¸ü¸ÄÃÜÂëµÄÓû§¿ÉÒÔʹÓôËÎó²î»ñÈ¡ºÍʹÓÃÆäËûЧÀÍµÄÆ±Ö¤¡£¡£¡£¡£¡£ | 5.4 | Samba < 4.16.4 |
CVE-2022-32744 | ÃÜÂë¸ü¸ÄÇëÇóαÔìÎó²î | KDC ½ÓÊÜÓÃËüËùÖªµÄÈκÎÃÜÔ¿¼ÓÃÜµÄ kpasswd ÇëÇ󣬣¬£¬£¬£¬¶ñÒâÓû§¿ÉÒÔͨ¹ýÓÃ×Ô¼ºµÄÃÜÔ¿¼ÓÃÜαÔìµÄkpasswdÇëÇ󣬣¬£¬£¬£¬²¢¸Ä±äÆäËûÓû§µÄÃÜÂ룬£¬£¬£¬£¬´Ó¶øÊµÏÖ½ÓÊÜÓò¡£¡£¡£¡£¡£ | 8.8 | Samba >= 4.3 |
CVE-2022-32745 | ¾Ü¾øÐ§ÀÍÎó²î | Samba ADÓû§¿ÉÒÔͨ¹ýLDAPÌí¼Ó»òÐÞ¸ÄÇëÇóµ¼ÖÂЧÀÍÆ÷»á¼ûδ³õʼ»¯µÄÊý¾Ý£¬£¬£¬£¬£¬Õâͨ³£»£»áµ¼Ö·ֶιýʧ£¬£¬£¬£¬£¬¿ÉÄÜÔì³ÉЧÀÍÆ÷Àú³ÌÍ߽⡣¡£¡£¡£¡£ | 5.4 | Samba 4.16¡¢4.15.2¡¢4.14.10¡¢4.13.14 ºÍ¸ü¸ß°æ±¾ |
CVE-2022-32746 | Use-After-FreeÎó²î | Samba ADÓû§¿ÉÒÔͨ¹ýLDAPÌí¼Ó»òÐÞ¸ÄÇëÇ󣬣¬£¬£¬£¬ÔÚЧÀÍÆ÷Àú³ÌÖÐʵÏÖUse-After-Free¡£¡£¡£¡£¡£ | 5.4 | Samba < 4.16.4 |
CVE-2022-32742 | ÄÚ´æ×ß© | ¶Ô¹²Ïí¾ßÓÐд»á¼ûȨÏÞµÄSMB1¿Í»§¶Ë¿ÉÄܻᵼÖÂЧÀÍÆ÷ÄÚ´æÄÚÈÝдÈëÎļþ»ò´òÓ¡»ú¡£¡£¡£¡£¡£×¢£ºSamba < 4.11.0ĬÈÏÇéÐÎÏÂÊÜ´ËÎó²îÓ°Ï죻£»Samba >=4.11.0ĬÈϽûÓÃSMB1£¬£¬£¬£¬£¬ÈôÔÚsmb.conf ÎļþÖÐÆôÓà SMB1ÔòÊÜ´ËÎó²îÓ°Ï죻£»ËùÓÐÆôÓÃSMB1 µÄ Samba °æ±¾¶¼ÊÜ´ËÎó²îÓ°Ïì¡£¡£¡£¡£¡£ | 4.3 | ËùÓа汾 |
0x02 ´¦Öóͷ£½¨Òé
ÏÖÔÚÕâЩÎó²îÒѾÐÞ¸´£¬£¬£¬£¬£¬½¨ÒéËùÓÐÓû§Éý¼¶µ½Samba °æ±¾4.16.4¡¢4.15.9 »ò 4.14.14¡£¡£¡£¡£¡£
ÏÂÔØÁ´½Ó£º
https://www.samba.org/samba/history/security.html
×¢£º
1.ÔÚ´ó´ó¶¼Samba×°ÖÃÖУ¬£¬£¬£¬£¬kpasswd ²»ÊÇ AD DC µÄÒªº¦ÐÒ飬£¬£¬£¬£¬¿ÉÒÔͨ¹ýÔÚ smb.conf ÖÐÉèÖÃkpasswd port = 0À´½ûÓÃËü¡£¡£¡£¡£¡£
2.Õë¶ÔCVE-2022-32742£¬£¬£¬£¬£¬4.11.0֮ǰµÄSamba°æ±¾¿ÉÒÔͨ¹ýÔÚsmb.confµÄ[global]²¿·ÖÌí¼Óserver min protocol = SMB2_02À´½ûÓÃSMB1£¬£¬£¬£¬£¬²¢ÖØÐÂÆô¶¯smbd¡£¡£¡£¡£¡£
0x03 ²Î¿¼Á´½Ó
https://www.samba.org/samba/history/samba-4.16.4.html
https://www.samba.org/samba/security/CVE-2022-32742.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32744
0x04 ¸üа汾
°æ±¾ | ÈÕÆÚ | ÐÞ¸ÄÄÚÈÝ |
V1.0 | 2022-07-28 | Ê×´ÎÐû²¼ |
0x05 ¸½Â¼
ÈËÉú¾ÍÊDz©¼ò½é
ÈËÉú¾ÍÊDz©½¨ÉèÓÚ1996Ä꣬£¬£¬£¬£¬ÊÇÓÉÁôÃÀ²©Ê¿ÑÏÍû¼ÑŮʿ½¨ÉèµÄ¡¢ÓµÓÐÍêÈ«×ÔÖ÷֪ʶ²úȨµÄÐÅÏ¢Çå¾²¸ß¿Æ¼¼ÆóÒµ¡£¡£¡£¡£¡£ÊǺ£ÄÚ×î¾ßʵÁ¦µÄÐÅÏ¢Çå¾²²úÆ·¡¢Ç徲ЧÀͽâ¾ö¼Æ»®µÄÁ캽ÆóÒµÖ®Ò»¡£¡£¡£¡£¡£
¹«Ë¾×ܲ¿Î»ÓÚ±±¾©ÊÐÖйشåÈí¼þÔ°ÈËÉú¾ÍÊDz©´óÏ㬣¬£¬£¬£¬¹«Ë¾Ô±¹¤½ü4000ÈË£¬£¬£¬£¬£¬Ñз¢ÍŶÓ1200ÓàÈË, ÊÖÒÕЧÀÍÍŶÓ1300ÓàÈË¡£¡£¡£¡£¡£ÔÚÌìϸ÷Ê¡¡¢ÊС¢×ÔÖÎÇøÉèÁ¢·ÖÖ§»ú¹¹ÁùÊ®¶à¸ö£¬£¬£¬£¬£¬ÓµÓÐÁýÕÖÌìϵÄÏúÊÛϵͳ¡¢ÇþµÀϵͳºÍÊÖÒÕÖ§³Öϵͳ¡£¡£¡£¡£¡£¹«Ë¾ÓÚ2010Äê6ÔÂ23ÈÕÔÚÉîÛÚÖÐС°å¹ÒÅÆÉÏÊС£¡£¡£¡£¡££¨¹ÉƱ´úÂ룺002439£©
¶àÄêÀ´£¬£¬£¬£¬£¬ÈËÉú¾ÍÊDz©ÖÂÁ¦ÓÚÌṩ¾ßÓйú¼Ê¾ºÕùÁ¦µÄ×ÔÖ÷Á¢ÒìµÄÇå¾²²úÆ·ºÍ×î¼Ñʵ¼ùЧÀÍ£¬£¬£¬£¬£¬×ÊÖú¿Í»§ÖÜÈ«ÌáÉýÆäIT»ù´¡ÉèÊ©µÄÇå¾²ÐÔºÍÉú²úЧÄÜ£¬£¬£¬£¬£¬Îª´òÔìºÍÌáÉý¹ú¼Ê»¯µÄÃñ×åÐÅÏ¢Çå¾²¹¤ÒµÁì¾üÆ·ÅÆ¶ø²»Ð¸Æð¾¢¡£¡£¡£¡£¡£
¹ØÓÚÈËÉú¾ÍÊDz©
ÈËÉú¾ÍÊDz©Çå¾²Ó¦¼±ÏìÓ¦ÖÐÐÄÖ÷ÒªÕë¶ÔÖ÷ÒªÇå¾²Îó²îµÄÔ¤¾¯¡¢¸ú×ٺͷÖÏíÈ«Çò×îеÄÍþвÇ鱨ºÍÇå¾²±¨¸æ¡£¡£¡£¡£¡£
¹Ø×¢ÒÔϹ«Öںţ¬£¬£¬£¬£¬»ñȡȫÇò×îÐÂÇå¾²×ÊѶ£º



¾©¹«Íø°²±¸11010802024551ºÅ