Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.

Security Fix(es):

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root. (CVE-2017-7494)

Red Hat would like to thank the Samba project for reporting this issue. Upstream acknowledges steelo as the original reporter.

OSVersionArchitecturePackageVersionFilename
RedHat7ppc64samba-test< 4.4.4-14.el7_3samba-test-4.4.4-14.el7_3.ppc64.rpm
RedHat6i686samba-winbind-krb5-locator< 3.6.23-43.el6_9samba-winbind-krb5-locator-3.6.23-43.el6_9.i686.rpm
RedHat7aarch64samba-winbind-krb5-locator< 4.4.4-14.el7_3samba-winbind-krb5-locator-4.4.4-14.el7_3.aarch64.rpm
RedHat7aarch64samba-client-libs< 4.4.4-14.el7_3samba-client-libs-4.4.4-14.el7_3.aarch64.rpm
RedHat7x86_64ctdb-tests< 4.4.4-14.el7_3ctdb-tests-4.4.4-14.el7_3.x86_64.rpm
RedHat7i686samba-debuginfo< 4.4.4-14.el7_3samba-debuginfo-4.4.4-14.el7_3.i686.rpm
RedHat7x86_64samba-winbind-modules< 4.4.4-14.el7_3samba-winbind-modules-4.4.4-14.el7_3.x86_64.rpm
RedHat6i686samba-winbind-devel< 3.6.23-43.el6_9samba-winbind-devel-3.6.23-43.el6_9.i686.rpm
RedHat6s390xsamba-doc< 3.6.23-43.el6_9samba-doc-3.6.23-43.el6_9.s390x.rpm
RedHat6i686samba-debuginfo< 3.6.23-43.el6_9samba-debuginfo-3.6.23-43.el6_9.i686.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	ppc64	samba-test	< 4.4.4-14.el7_3	samba-test-4.4.4-14.el7_3.ppc64.rpm
RedHat	6	i686	samba-winbind-krb5-locator	< 3.6.23-43.el6_9	samba-winbind-krb5-locator-3.6.23-43.el6_9.i686.rpm
RedHat	7	aarch64	samba-winbind-krb5-locator	< 4.4.4-14.el7_3	samba-winbind-krb5-locator-4.4.4-14.el7_3.aarch64.rpm
RedHat	7	aarch64	samba-client-libs	< 4.4.4-14.el7_3	samba-client-libs-4.4.4-14.el7_3.aarch64.rpm
RedHat	7	x86_64	ctdb-tests	< 4.4.4-14.el7_3	ctdb-tests-4.4.4-14.el7_3.x86_64.rpm
RedHat	7	i686	samba-debuginfo	< 4.4.4-14.el7_3	samba-debuginfo-4.4.4-14.el7_3.i686.rpm
RedHat	7	x86_64	samba-winbind-modules	< 4.4.4-14.el7_3	samba-winbind-modules-4.4.4-14.el7_3.x86_64.rpm
RedHat	6	i686	samba-winbind-devel	< 3.6.23-43.el6_9	samba-winbind-devel-3.6.23-43.el6_9.i686.rpm
RedHat	6	s390x	samba-doc	< 3.6.23-43.el6_9	samba-doc-3.6.23-43.el6_9.s390x.rpm
RedHat	6	i686	samba-debuginfo	< 3.6.23-43.el6_9	samba-debuginfo-3.6.23-43.el6_9.i686.rpm

Rows per page:

1-10 of 2101

redhat 4

nessus 30

securelist 1

centos 2

ubuntu 2

openvas 21

threatpost 3

fedora 3

cisa_kev 1

altlinux 5

packetstorm 3

samba 1

myhack58 4

exploitpack 1

ibm 6

slackware 1

attackerkb 1

redhatcve 1

osv 3

ics 1

nvd 1

thn 4

debiancve 1

seebug 1

metasploit 1

saint 3

suse 5

debian 3

ubuntucve 1

checkpoint_advisories 1

archlinux 1

veracode 1

zdt 2

freebsd 1

oraclelinux 3

huawei 2

alpinelinux 1

cvelist 1

talosblog 1

rapid7community 2

f5 1

qualysblog 1

cve 1

cisa 1

cisco 1

avleonov 1

canvas 1

prion 1

exploitdb 2

nmap 59

redhat

(RHSA-2017:1271) Important: samba4 security update

2017-05-24 07:26:37

(RHSA-2017:1390) Important: samba security update

2017-06-05 05:47:14

(RHSA-2017:1273) Important: samba security update

2017-05-24 07:27:07

nessus

RHEL 6 : samba4 (RHSA-2017:1271) (SambaCry)

2017-05-25 00:00:00

Oracle Linux 6 : samba4 (ELSA-2017-1271) (SambaCry)

2017-05-25 00:00:00

RHEL 5 : samba3x (RHSA-2017:1272) (SambaCry)

2017-05-26 00:00:00

securelist

SambaCry is coming

2017-06-09 22:07:16

centos

ctdb, libsmbclient, libwbclient, samba security update

2017-05-25 13:08:37

samba4 security update

2017-05-25 13:07:15

ubuntu

Samba vulnerability

2017-05-24 00:00:00

Samba vulnerability

2017-05-24 00:00:00

openvas

Debian: Security Advisory (DSA-3860-1)

2017-05-23 00:00:00

Fedora Update for samba FEDORA-2017-642a0eca75

2017-05-27 00:00:00

openSUSE: Security Advisory for samba (openSUSE-SU-2017:1415-1)

2017-05-27 00:00:00

threatpost

Cisco, Netgear Readying Patches for Samba Vulnerability

2017-05-31 13:51:56

Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

2017-06-12 09:34:17

Samba Patches Critical Bug Exploitable With One Line Of Code

2017-05-25 12:20:32

fedora

[SECURITY] Fedora 25 Update: samba-4.5.10-0.fc25

2017-05-27 03:06:08

[SECURITY] Fedora 26 Update: samba-4.6.4-0.fc26

2017-06-03 17:39:59

[SECURITY] Fedora 24 Update: samba-4.4.14-0.fc24

2017-05-27 02:53:53

cisa_kev

Samba Remote Code Execution Vulnerability

2023-03-30 00:00:00

altlinux

Security fix for the ALT Linux 8 package samba-DC version 4.6.4-alt1

2017-05-24 00:00:00

Security fix for the ALT Linux 10 package samba version 4.6.4-alt1.S1

2017-05-24 00:00:00

Security fix for the ALT Linux 8 package samba version 4.6.4-alt1

2017-05-24 00:00:00

packetstorm

Samba 3.5.0 Remote Code Execution

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load

2017-05-27 00:00:00

Samba is_known_pipename() Code Execution

2017-06-02 00:00:00

samba

Remote code execution from a writable share.

2017-05-24 00:00:00

myhack58

Samba remote code execution vulnerability(CVE-2017-7494)-SambaCry analysis report-vulnerability warning-the black bar safety net

2017-05-28 00:00:00

Vulnerability warning|Samba remote code execution vulnerability, affecting 7 years ago version-bug warning-the black bar safety net

2017-05-25 00:00:00

SambaCry exploit analysis-exploit warning-the black bar safety net

2017-06-13 00:00:00

exploitpack

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

ibm

Security Bulletin: Samba vulnerability issue in IBM SONAS (CVE-2017-7494)

2018-06-18 00:34:57

Security Bulletin: Open Source Samba Samba Vulnerabilities which is used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-7494)

2018-06-15 07:08:02

Security Bulletin: Samba vulnerability issue on IBM Storwize V7000 Unified

2018-06-18 00:35:38

slackware

[slackware-security] samba

2017-05-24 20:34:46

attackerkb

CVE-2017-7494

2017-05-30 00:00:00

redhatcve

CVE-2017-7494

2021-03-13 22:06:40

osv

samba - security update

2017-05-24 00:00:00

CVE-2017-7494

2017-05-30 18:29:00

samba - security update

2017-05-24 00:00:00

ics

Potential Legacy Risk from Malware Targeting QNAP NAS Devices

2020-08-06 12:00:00

nvd

CVE-2017-7494

2017-05-30 18:29:00

thn

7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

2017-05-24 20:23:00

CowerSnail — Windows Backdoor from the Creators of SambaCry Linux Malware

2017-07-27 00:40:00

Warning! Hackers Started Using "SambaCry Flaw" to Hack Linux Systems

2017-06-10 01:16:00

debiancve

CVE-2017-7494

2017-05-30 18:29:00

seebug

Samba remote code execution vulnerability(CVE-2017-7494)

2017-05-25 00:00:00

metasploit

Samba is_known_pipename() Arbitrary Module Load

2017-05-25 00:42:04

saint

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

suse

Security update for samba (important)

2017-05-24 15:09:57

Security update for samba (important)

2017-05-24 15:09:27

Security update for samba (important)

2017-05-26 18:09:30

debian

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DLA 951-1] samba security update

2017-05-24 08:11:20

ubuntucve

CVE-2017-7494

2017-05-24 00:00:00

checkpoint_advisories

Linux EternalRed Samba Remote Code Execution (CVE-2017-7494)

2017-05-25 00:00:00

archlinux

[ASA-201705-22] samba: arbitrary code execution

2017-05-30 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 09:17:29

zdt

Samba is_known_pipename() Arbitrary Module Load Exploit

2017-05-30 00:00:00

Samba 3.5.0 - Remote code execution Exploit

2017-05-25 00:00:00

freebsd

samba -- remote code execution vulnerability

2017-05-24 00:00:00

oraclelinux

samba security update

2017-05-24 00:00:00

samba3x security update

2017-05-26 00:00:00

samba4 security update

2017-05-24 00:00:00

huawei

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-06-13 00:00:00

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-11-29 00:00:00

alpinelinux

CVE-2017-7494

2017-05-30 18:29:00

cvelist

CVE-2017-7494

2017-05-30 18:00:00

talosblog

Samba Vulnerability: Dancing Its Way to a Network Near You

2017-05-25 00:31:00

rapid7community

Patching CVE-2017-7494 in Samba: It’s the Circle of Life

2017-05-27 02:51:04

Samba CVE-2017-7494: Scanning and Remediating in InsightVM and Nexpose

2017-05-25 21:22:37

K13551136 : Samba remote code execution vulnerability CVE-2017-7494

2017-05-25 00:00:00

qualysblog

Samba Vulnerability CVE-2017-7494

2017-05-26 20:32:57

cve

CVE-2017-7494

2017-05-30 18:29:00

cisa

Samba Releases Security Updates

2017-05-24 00:00:00

cisco

Vulnerability in Samba Affecting Cisco Products: May 2017

2017-05-30 19:30:00

avleonov

New vulnersBot for Telegram with advanced searches and subscriptions

2017-05-28 10:59:52

canvas

Immunity Canvas: SAMBA_IS_KNOWN_PIPENAME

2017-05-30 18:29:00

prion

Remote code execution

2017-05-30 18:29:00

exploitdb

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - 'is_known_pipename()' Arbitrary Module Load (Metasploit)

2017-05-29 00:00:00

nmap

ovs-agent-version NSE Script

2011-03-02 07:39:31

sslv2 NSE Script

2008-11-06 02:52:59

irc-unrealircd-backdoor NSE Script

2010-06-25 20:05:54

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.973 High

EPSS

Percentile

99.9%

JSON

Related for RHSA-2017:1270