DEBIAN-CVE-2006-1059

DEBIAN-CVE-2006-1059 PUBLISHED

The winbindd daemon in Samba 3.0.21 to 3.0.21c writes the machine trust account password in cleartext in log files, which allows local users to obtain the password and spoof the server in the domain.

Affected Products

Vendor	Product	Versions
Debian:11	samba	0, 0, 0
Debian:14	samba	0, 0, 0
Debian:13	samba	0, 0, 0
Debian:12	samba	0, 0, 0

Timeline

Mar 30, 2006 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2006-1059 advisory

Open in Interactive Console →