Vulnerabilities
Misconfiguration
Compliance
CVE Vulnerabilities

CVE-2016-2118

Published: Apr 12, 2016 | Modified: Apr 12, 2025
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
6.8 IMPORTANT
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu
MEDIUM
Vulnerability-free packages from our partners
root.io logo minimus.io logo echo.ai logo
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2016-2118
CWEhttps://cwe.mitre.org/data/definitions/254.html

The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka BADLOCK.

Affected Software

NameVendorStart VersionEnd Version
SambaSamba3.6.0 (including)4.2.10 (excluding)
SambaSamba4.3.0 (including)4.3.7 (excluding)
SambaSamba4.4.0 (including)4.4.1 (excluding)
Red Hat Enterprise Linux 4 Extended Lifecycle SupportRedHatsamba-0:3.0.33-3.37.el4*
Red Hat Enterprise Linux 5RedHatsamba3x-0:3.6.23-12.el5_11*
Red Hat Enterprise Linux 5RedHatsamba-0:3.0.33-3.41.el5_11*
Red Hat Enterprise Linux 5.6 Long LifeRedHatsamba-0:3.0.33-3.30.el5_6*
Red Hat Enterprise Linux 5.6 Long LifeRedHatsamba3x-0:3.6.23-12.el5_6*
Red Hat Enterprise Linux 5.9 Long LifeRedHatsamba-0:3.0.33-3.40.el5_9*
Red Hat Enterprise Linux 5.9 Long LifeRedHatsamba3x-0:3.6.23-12.el5_9*
Red Hat Enterprise Linux 6RedHatsamba-0:3.6.23-30.el6_7*
Red Hat Enterprise Linux 6RedHatipa-0:3.0.0-47.el6_7.2*
Red Hat Enterprise Linux 6RedHatlibldb-0:1.1.25-2.el6_7*
Red Hat Enterprise Linux 6RedHatlibtalloc-0:2.1.5-1.el6_7*
Red Hat Enterprise Linux 6RedHatlibtdb-0:1.3.8-1.el6_7*
Red Hat Enterprise Linux 6RedHatlibtevent-0:0.9.26-2.el6_7*
Red Hat Enterprise Linux 6RedHatopenchange-0:1.0-7.el6_7*
Red Hat Enterprise Linux 6RedHatsamba4-0:4.2.10-6.el6_7*
Red Hat Enterprise Linux 6.2 Advanced Update SupportRedHatsamba-0:3.6.23-30.el6_2*
Red Hat Enterprise Linux 6.2 Advanced Update SupportRedHatevolution-mapi-0:0.28.3-8.el6_2*
Red Hat Enterprise Linux 6.2 Advanced Update SupportRedHatlibldb-0:1.1.25-2.el6_2*
Red Hat Enterprise Linux 6.2 Advanced Update SupportRedHatopenchange-0:1.0-1.el6_2*
Red Hat Enterprise Linux 6.2 Advanced Update SupportRedHatsamba4-0:4.2.10-6.el6_2*
Red Hat Enterprise Linux 6.2 Advanced Update SupportRedHatsssd-0:1.5.1-66.el6_2.5*
Red Hat Enterprise Linux 6.4 Advanced Update SupportRedHatsamba-0:3.6.23-30.el6_4*
Red Hat Enterprise Linux 6.4 Advanced Update SupportRedHatipa-0:3.0.0-26.el6_4.5*
Red Hat Enterprise Linux 6.4 Advanced Update SupportRedHatlibldb-0:1.1.25-2.el6_4*
Red Hat Enterprise Linux 6.4 Advanced Update SupportRedHatopenchange-0:1.0-5.el6_4*
Red Hat Enterprise Linux 6.4 Advanced Update SupportRedHatsamba4-0:4.2.10-6.el6_4*
Red Hat Enterprise Linux 6.4 Advanced Update SupportRedHatsssd-0:1.9.2-82.12.el6_4*
Red Hat Enterprise Linux 6.5 Advanced Update SupportRedHatsamba-0:3.6.23-30.el6_5*
Red Hat Enterprise Linux 6.5 Advanced Update SupportRedHatipa-0:3.0.0-37.el6_5.1*
Red Hat Enterprise Linux 6.5 Advanced Update SupportRedHatlibldb-0:1.1.25-2.el6_5*
Red Hat Enterprise Linux 6.5 Advanced Update SupportRedHatopenchange-0:1.0-7.el6_5*
Red Hat Enterprise Linux 6.5 Advanced Update SupportRedHatsamba4-0:4.2.10-6.el6_5*
Red Hat Enterprise Linux 6.5 Advanced Update SupportRedHatsssd-0:1.9.2-129.el6_5.7*
Red Hat Enterprise Linux 6.6 Extended Update SupportRedHatsamba-0:3.6.23-30.el6_6*
Red Hat Enterprise Linux 6.6 Extended Update SupportRedHatipa-0:3.0.0-42.el6_6.1*
Red Hat Enterprise Linux 6.6 Extended Update SupportRedHatlibldb-0:1.1.25-2.el6_6*
Red Hat Enterprise Linux 6.6 Extended Update SupportRedHatopenchange-0:1.0-7.el6_6*
Red Hat Enterprise Linux 6.6 Extended Update SupportRedHatsamba4-0:4.2.10-6.el6_6*
Red Hat Enterprise Linux 7RedHatipa-0:4.2.0-15.el7_2.6.1*
Red Hat Enterprise Linux 7RedHatlibldb-0:1.1.25-1.el7_2*
Red Hat Enterprise Linux 7RedHatlibtalloc-0:2.1.5-1.el7_2*
Red Hat Enterprise Linux 7RedHatlibtdb-0:1.3.8-1.el7_2*
Red Hat Enterprise Linux 7RedHatlibtevent-0:0.9.26-1.el7_2*
Red Hat Enterprise Linux 7RedHatopenchange-0:2.0-10.el7_2*
Red Hat Enterprise Linux 7RedHatsamba-0:4.2.10-6.el7_2*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatipa-0:4.1.0-18.ael7b_1.6*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatlibldb-0:1.1.25-1.ael7b_1*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatlibtalloc-0:2.1.5-1.el7_1*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatlibtdb-0:1.3.8-1.el7_1*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatlibtevent-0:0.9.26-1.ael7b_1*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatopenchange-0:2.0-4.ael7b_1.1*
Red Hat Enterprise Linux 7.1 Extended Update SupportRedHatsamba-0:4.2.10-5.ael7b_1*
Red Hat Gluster Storage 3.1 for RHEL 6RedHatlibldb-0:1.1.24-1.el6rhs*
Red Hat Gluster Storage 3.1 for RHEL 6RedHatlibtalloc-0:2.1.5-1.el6rhs*
Red Hat Gluster Storage 3.1 for RHEL 6RedHatlibtdb-0:1.3.8-1.el6rhs*
Red Hat Gluster Storage 3.1 for RHEL 6RedHatlibtevent-0:0.9.26-1.el6rhs*
Red Hat Gluster Storage 3.1 for RHEL 6RedHatsamba-0:4.2.11-2.el6rhs*
Red Hat Gluster Storage 3.1 for RHEL 7RedHatlibldb-0:1.1.24-1.el7rhgs*
Red Hat Gluster Storage 3.1 for RHEL 7RedHatlibtalloc-0:2.1.5-1.el7rhgs*
Red Hat Gluster Storage 3.1 for RHEL 7RedHatlibtdb-0:1.3.8-1.el7rhgs*
Red Hat Gluster Storage 3.1 for RHEL 7RedHatlibtevent-0:0.9.26-1.el7rhgs*
Red Hat Gluster Storage 3.1 for RHEL 7RedHatsamba-0:4.2.11-2.el7rhgs*
SambaUbuntudevel*
SambaUbuntuesm-infra-legacy/trusty*
SambaUbuntuesm-infra/xenial*
SambaUbuntuprecise*
SambaUbuntutrusty*
SambaUbuntutrusty/esm*
SambaUbuntuupstream*
SambaUbuntuwily*
SambaUbuntuxenial*
SambaUbuntuyakkety*
SambaUbuntuzesty*
Samba4Ubuntuprecise*

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2026 Aqua Security Software Ltd.   Privacy Policy | Terms of Use