A flaw was found in Samba. It is susceptible to a vulnerability where multiple incompatible RPC listeners can be initiated, causing disruptions in the AD DC service. When Samba's RPC server experiences a high load or unresponsiveness, servers intended for non-AD DC purposes (for example, NT4-emulation "classic DCs") can erroneously start and compete for the same unix domain sockets. This issue leads to partial query responses from the AD DC, causing issues such as "The procedure number is out of range" when using tools like Active Directory Users. This flaw allows an attacker to disrupt AD DC services.
History

Fri, 22 Nov 2024 12:00:00 +0000


Wed, 06 Nov 2024 15:30:00 +0000


Wed, 06 Nov 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 06 Nov 2024 14:45:00 +0000

Type Values Removed Values Added
Title Ad dc busy rpc multiple listener dos Samba: ad dc busy rpc multiple listener dos

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2023-11-03T07:58:04.881Z

Updated: 2024-11-06T14:42:08.337Z

Reserved: 2023-09-13T04:22:28.796Z

Link: CVE-2023-42670

cve-icon Vulnrichment

Updated: 2024-08-02T19:23:40.145Z

cve-icon NVD

Status : Modified

Published: 2023-11-03T08:15:07.883

Modified: 2024-11-21T08:22:55.610

Link: CVE-2023-42670

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-10-10T00:00:00Z

Links: CVE-2023-42670 - Bugzilla