7 Year Old Code-Execution Bug Found in Samba

< Back to the blog

It appears Wannacry may have gotten people looking at the SMB functions in Samba on Linux as well.  A code-execution bug was detected in all versions of Samba 3.5.0 (released March 2010) and onwards.  It is CVE-2017-7494 and there is already a Metasploit module available for attacking Linux servers running Samba for file and print sharing.

A patch is available for this vulnerability.  A line can be added to the Samba configuration file as a workaround if the Samba patch cannot be applied, but that change may affect funtionality of Windows machines accessing the share.

Arstechnica write-up - https://arstechnica.com/security/2017/05/a-wormable-code-execution-bug-has-lurked-in-samba-for-7-years-patch-now/

Samba team announcement - https://www.samba.org/samba/security/CVE-2017-7494.html

Addresses

  • Atlanta
    6 Concourse Parkway,
    Suite 2900
    Atlanta, GA 30328
  • Boston
    25 Walpole Park South, Suite 12, Walpole, MA 02081
  • Chicago
    825 Corporate Woods Parkway Vernon Hills, IL 60061
  • Moline
    1 Blackwell Blvd.
    Moline, IL 61265
  • Tampa
    380 Park Place, Suite 130, Clearwater, FL 33759

Have a Question?

Contact us