Samba: Mutual Authentication Validation Bypass (CVE-2017-11103) and Spectrum

Document ID : KB000015794
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

A MITM attacker may impersonate a trusted server and thus gain elevated access to the domain by  returning malicious replication or authorization data.

https://www.samba.org/samba/security/CVE-2017-11103.html

 

 

 

Question:

Is Spectrum susceptible to the Samba: Mutual Authentication Validation Bypass  vulnerability and if so, are there any plans to protect against it? 

Environment:
Spectrum 10.x
Answer:

Spectrum is not affected by this vulnerability as we don’t use any samba server related calls or are any libraries included in the deployment.

Additional Information:

Please contact CA Support if any questions.