A vulnerability in Samba allows a remote attacker to upload a shared object library to a writable share, and then cause the server to load and execute it.

Resolution

Upgrade to Samba 4.4.14, 4.5.10, or 4.6.4 or higher, or install an updated package from your Linux vendor.

References

<https://www.samba.org/samba/security/CVE-2017-7494.html>

Limitations

Exploit works against Ubuntu 14.04 and requires the login and password of an account with write access to a Samba share on the target unless an anonymously writable share exists.

Platforms

Linux

altlinux 5

ibm 6

oraclelinux 3

nessus 30

threatpost 3

cisa 1

rapid7community 2

prion 1

avleonov 1

openvas 21

redhat 5

suse 5

cisco 1

canvas 1

zdt 2

fedora 3

cisa_kev 1

centos 2

exploitpack 1

securelist 1

packetstorm 3

ubuntu 2

myhack58 4

samba 1

checkpoint_advisories 1

thn 4

debian 3

archlinux 1

ubuntucve 1

saint 2

veracode 1

osv 3

redhatcve 1

attackerkb 1

debiancve 1

ics 1

slackware 1

metasploit 1

seebug 1

talosblog 1

huawei 2

alpinelinux 1

freebsd 1

qualysblog 1

f5 1

cve 1

exploitdb 2

nmap 61

altlinux

Security fix for the ALT Linux 7 package samba-DC version 4.5.10-alt1.M70P.1

2017-05-25 00:00:00

Security fix for the ALT Linux 8 package samba-DC version 4.6.4-alt1

2017-05-24 00:00:00

Security fix for the ALT Linux 10 package samba version 4.6.4-alt1.S1

2017-05-24 00:00:00

ibm

Security Bulletin: Vulnerability CVE-2017-7494 in Samba affects IBM i

2019-12-18 14:26:38

Security Bulletin: Samba vulnerability issue in IBM SONAS (CVE-2017-7494)

2018-06-18 00:34:57

Security Bulletin: Open Source Samba Samba Vulnerabilities which is used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-7494)

2018-06-15 07:08:02

oraclelinux

samba4 security update

2017-05-24 00:00:00

samba security update

2017-05-24 00:00:00

samba3x security update

2017-05-26 00:00:00

nessus

Slackware 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : samba (SSA:2017-144-01) (SambaCry)

2017-05-25 00:00:00

openSUSE Security Update : samba (openSUSE-2017-618) (SambaCry)

2017-05-30 00:00:00

Fedora 25 : 2:samba (2017-642a0eca75) (SambaCry)

2017-05-30 00:00:00

threatpost

Samba Patches Critical Bug Exploitable With One Line Of Code

2017-05-25 12:20:32

Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

2017-06-12 09:34:17

Cisco, Netgear Readying Patches for Samba Vulnerability

2017-05-31 13:51:56

cisa

Samba Releases Security Updates

2017-05-24 00:00:00

rapid7community

Samba CVE-2017-7494: Scanning and Remediating in InsightVM and Nexpose

2017-05-25 21:22:37

Patching CVE-2017-7494 in Samba: It’s the Circle of Life

2017-05-27 02:51:04

prion

Remote code execution

2017-05-30 18:29:00

avleonov

New vulnersBot for Telegram with advanced searches and subscriptions

2017-05-28 10:59:52

openvas

SUSE: Security Advisory (SUSE-SU-2017:1393-1)

2021-04-19 00:00:00

Ubuntu: Security Advisory (USN-3296-1)

2017-05-25 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:1391-1)

2021-06-09 00:00:00

redhat

(RHSA-2017:1273) Important: samba security update

2017-05-24 07:27:07

(RHSA-2017:1272) Important: samba3x security update

2017-05-24 00:00:00

(RHSA-2017:1271) Important: samba4 security update

2017-05-24 07:26:37

suse

Security update for samba (important)

2017-05-24 21:12:15

Security update for samba (important)

2017-05-24 15:10:25

Security update for samba (important)

2017-05-24 15:09:27

cisco

Vulnerability in Samba Affecting Cisco Products: May 2017

2017-05-30 19:30:00

canvas

Immunity Canvas: SAMBA_IS_KNOWN_PIPENAME

2017-05-30 18:29:00

zdt

Samba 3.5.0 - Remote code execution Exploit

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load Exploit

2017-05-30 00:00:00

fedora

[SECURITY] Fedora 25 Update: samba-4.5.10-0.fc25

2017-05-27 03:06:08

[SECURITY] Fedora 26 Update: samba-4.6.4-0.fc26

2017-06-03 17:39:59

[SECURITY] Fedora 24 Update: samba-4.4.14-0.fc24

2017-05-27 02:53:53

cisa_kev

Samba Remote Code Execution Vulnerability

2023-03-30 00:00:00

centos

samba4 security update

2017-05-25 13:07:15

ctdb, libsmbclient, libwbclient, samba security update

2017-05-25 13:08:37

exploitpack

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

securelist

SambaCry is coming

2017-06-09 22:07:16

packetstorm

Samba 3.5.0 Remote Code Execution

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load

2017-05-27 00:00:00

Samba is_known_pipename() Code Execution

2017-06-02 00:00:00

ubuntu

Samba vulnerability

2017-05-24 00:00:00

Samba vulnerability

2017-05-24 00:00:00

myhack58

Samba remote code execution vulnerability(CVE-2017-7494)-SambaCry analysis report-vulnerability warning-the black bar safety net

2017-05-28 00:00:00

SambaCry exploit analysis-exploit warning-the black bar safety net

2017-06-13 00:00:00

Vulnerability warning|Samba remote code execution vulnerability, affecting 7 years ago version-bug warning-the black bar safety net

2017-05-25 00:00:00

samba

Remote code execution from a writable share.

2017-05-24 00:00:00

checkpoint_advisories

Linux EternalRed Samba Remote Code Execution (CVE-2017-7494)

2017-05-25 00:00:00

thn

CowerSnail — Windows Backdoor from the Creators of SambaCry Linux Malware

2017-07-27 00:40:00

Warning! Hackers Started Using "SambaCry Flaw" to Hack Linux Systems

2017-06-10 01:16:00

7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

2017-05-24 20:23:00

debian

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DLA 951-1] samba security update

2017-05-24 08:11:20

archlinux

[ASA-201705-22] samba: arbitrary code execution

2017-05-30 00:00:00

ubuntucve

CVE-2017-7494

2017-05-24 00:00:00

saint

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 09:17:29

osv

CVE-2017-7494

2017-05-30 18:29:00

samba - security update

2017-05-24 00:00:00

samba - security update

2017-05-24 00:00:00

redhatcve

CVE-2017-7494

2021-03-13 22:06:40

attackerkb

CVE-2017-7494

2017-05-30 00:00:00

debiancve

CVE-2017-7494

2017-05-30 18:29:00

ics

Potential Legacy Risk from Malware Targeting QNAP NAS Devices

2020-08-06 12:00:00

slackware

[slackware-security] samba

2017-05-24 20:34:46

metasploit

Samba is_known_pipename() Arbitrary Module Load

2017-05-25 00:42:04

seebug

Samba remote code execution vulnerability(CVE-2017-7494)

2017-05-25 00:00:00

talosblog

Samba Vulnerability: Dancing Its Way to a Network Near You

2017-05-25 00:31:00

huawei

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-06-13 00:00:00

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-11-29 00:00:00

alpinelinux

CVE-2017-7494

2017-05-30 18:29:00

freebsd

samba -- remote code execution vulnerability

2017-05-24 00:00:00

qualysblog

Samba Vulnerability CVE-2017-7494

2017-05-26 20:32:57

K13551136 : Samba remote code execution vulnerability CVE-2017-7494

2017-05-25 00:00:00

cve

CVE-2017-7494

2017-05-30 18:29:00

exploitdb

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - 'is_known_pipename()' Arbitrary Module Load (Metasploit)

2017-05-29 00:00:00

nmap

ajp-request NSE Script

2012-05-14 21:30:24

http-sitemap-generator NSE Script

2012-07-01 09:55:47

hadoop-secondary-namenode-info NSE Script

2011-11-08 16:00:16

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.8%

JSON

Related for SAINT:6FE788CBA26F517C02B44A699047593B