About: Badlock

Facets (new session)
Description
Metadata
Settings
- Rule:
- Inverse Functional Properties:
- "Same As":

About: Badlock Goto Sponge NotDistinct Permalink

An Entity of Type : owl:Thing, within Data Space : dbpedia.demo.openlinksw.com associated with source document(s)
QRcode icon

http://dbpedia.demo.openlinksw.com/c/45Rcd15U8J

Badlock (CVE-2016-2118) is a security bug disclosed on April 12, 2016 affecting the Security Account Manager (SAM) and Local Security Authority (Domain Policy) (LSAD) remote protocols supported by Windows and Samba servers. Both SAM and LSAD are layered onto the DCE 1.1 Remote Procedure Call (DCE/RPC) protocol. As implemented in Samba and Windows, the RPC services allowed an attacker to become man in the middle. Although the vulnerability was discovered during the development of Samba, the namegiving SMB protocol itself is not affected.

Attributes	Values
rdfs:label	Badlock (en) Badlock (ru) Badlock (zh)
rdfs:comment	Badlock (CVE-2016-2118) is a security bug disclosed on April 12, 2016 affecting the Security Account Manager (SAM) and Local Security Authority (Domain Policy) (LSAD) remote protocols supported by Windows and Samba servers. Both SAM and LSAD are layered onto the DCE 1.1 Remote Procedure Call (DCE/RPC) protocol. As implemented in Samba and Windows, the RPC services allowed an attacker to become man in the middle. Although the vulnerability was discovered during the development of Samba, the namegiving SMB protocol itself is not affected. (en) Badlock (CVE-2016-2118 и CVE-2016-0128) — ошибка в протоколе SMB/CIFS. Краткая информация об уязвимости была опубликована 24 марта 2016 года, подробная информация и исправления — 12 апреля. Ошибка была обнаружена как в свободной реализации протокола (Samba 3.6-4.4), так и в Windows (CVE-2016-0128, MS16-047). Также присутствует в ряде решений, основанных на Samba. Атака реализуется посредником (MITM), который используя DCERPC запросы снижает версию протокола MS-SAMR/MS-LSAD и переключает работу на слабозащищенный вариант авторизации. Была обнаружена полная незащищенность протоколов DCERPC. (ru) Badlock是于2016年4月12日披露的安全漏洞，其影响Windows和Samba服务器所支持的安全帐户管理器（SAM）和本地安全认证（域策略）（LSAD）远程协议。 SAM及LSD为DCE 1.1远程过程调用（DCE/RPC）协议的一部分。Samba和Windows实现的RPC服务允许攻击者发动中间人攻击。尽管漏洞是于Samba的开发过程中被发现的，其SMB协议本身不受影响。 (zh)
foaf:homepage	https://web.archive.org/web/20170608065927/http:/badlock.org/
name	Badlock (en)
foaf:depiction
dcterms:subject	Software bugs 2016 in computing Internet security
Wikipage page ID	50143193 (xsd:integer)
Wikipage revision ID	1085029959 (xsd:integer)
Link from a Wikipage to another Wikipage	Samba (software) DCE/RPC Software bugs 2016 in computing Security bug Internet security Microsoft Windows Man-in-the-middle attack Server Message Block
Link from a Wikipage to an external page	https://cve.mitre.org/cgi-bin/cvename.cgi%3Fname=CVE-2016-2118 https://web.archive.org/web/20170608065927/http:/badlock.org/ https://web.archive.org/web/20170608065927/http:/badlock.org/%7Ctitle=Badlock
sameAs	Badlock Badlock Badlock Badlock Badlock
dbp:wikiPageUsesTemplate	dbt:Infobox_bug dbt:CVE dbt:Reflist dbt:Short_description dbt:Webarchive dbt:Hacking_in_the_2010s
thumbnail	wiki-commons:Special:FilePath/Badlock_logo.svg?width=300
caption	Logo representing Badlock. (en)
website	https://web.archive.org/web/20170608065927/http:/badlock.org/
has abstract	Badlock (CVE-2016-2118) is a security bug disclosed on April 12, 2016 affecting the Security Account Manager (SAM) and Local Security Authority (Domain Policy) (LSAD) remote protocols supported by Windows and Samba servers. Both SAM and LSAD are layered onto the DCE 1.1 Remote Procedure Call (DCE/RPC) protocol. As implemented in Samba and Windows, the RPC services allowed an attacker to become man in the middle. Although the vulnerability was discovered during the development of Samba, the namegiving SMB protocol itself is not affected. (en) Badlock (CVE-2016-2118 и CVE-2016-0128) — ошибка в протоколе SMB/CIFS. Краткая информация об уязвимости была опубликована 24 марта 2016 года, подробная информация и исправления — 12 апреля. Ошибка была обнаружена как в свободной реализации протокола (Samba 3.6-4.4), так и в Windows (CVE-2016-0128, MS16-047). Также присутствует в ряде решений, основанных на Samba. Атака реализуется посредником (MITM), который используя DCERPC запросы снижает версию протокола MS-SAMR/MS-LSAD и переключает работу на слабозащищенный вариант авторизации. Была обнаружена полная незащищенность протоколов DCERPC. (ru) Badlock是于2016年4月12日披露的安全漏洞，其影响Windows和Samba服务器所支持的安全帐户管理器（SAM）和本地安全认证（域策略）（LSAD）远程协议。 SAM及LSD为DCE 1.1远程过程调用（DCE/RPC）协议的一部分。Samba和Windows实现的RPC服务允许攻击者发动中间人攻击。尽管漏洞是于Samba的开发过程中被发现的，其SMB协议本身不受影响。 (zh)
CVE	-2016.0 (capeVerdeEscudo)
prov:wasDerivedFrom	wikipedia-en:Badlock?oldid=1085029959&ns=0
page length (characters) of wiki page	1793 (xsd:nonNegativeInteger)
foaf:isPrimaryTopicOf	wikipedia-en:Badlock
is Link from a Wikipage to another Wikipage of	CVE-2016-2118
is Wikipage redirect of	CVE-2016-2118
is foaf:primaryTopic of	wikipedia-en:Badlock

Faceted Search & Find service v1.17_git147 as of Sep 06 2024

Alternative Linked Data Documents: ODE Content Formats:

RDF

ODATA

Microdata

About

OpenLink Virtuoso version 08.03.3332 as of Dec 5 2024, on Linux (x86_64-generic-linux-glibc212), Single-Server Edition (378 GB total memory, 60 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2025 OpenLink Software