Samba Remote Code Execution


CVE : https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7494

The seven-year-old exploit, indexed as CVE-2017-7494, are often reliably exploited with only 1 line of code to execute malicious code, as long as a few conditions are met. Those requirements include vulnerable computers that (a) create file- and printer-sharing port 445 accessible on the net, (b) tack shared files to possess write privileges, and (c) use known or guessable server paths for those files. once those conditions are satisfied, remote attackers can upload any code of their selecting and cause the server to execute it, possibly with unshackled root privileges, depending on the vulnerable platform.

Exploit-DB Link: https://www.exploit-db.com/exploits/42060/

No comments

Note: Only a member of this blog may post a comment.

Powered by Blogger.