Lucene search

Immunity CanvasSAMBA_IS_KNOWN_PIPENAME

HistoryMay 30, 2017 - 6:29 p.m.

Immunity Canvas: SAMBA_IS_KNOWN_PIPENAME

2017-05-3018:29:00

Immunity Canvas

exploitlist.immunityinc.com

2463

0.973 High

EPSS

Percentile

99.9%

JSON

Name	samba_is_known_pipename
CVE	CVE-2017-7494 Exploit Pack
CVE Name: CVE-2017-7494
VENDOR: Samba
Notes:

In order to use this exploit you need:

Write access to a SAMBA share.
Named pipes should be enabled in the SAMBA server.

Tested on Samba 4.1.6 (x86_64 and x86) on Ubuntu

For anonymously writable share:
python ./exploits/remote/unix/samba_is_known_pipename.py -t

Date public: May 24, 2017
Versions Tested: Ubuntu 14.04.3 LTS
CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7494
CVSS: 9.8

suse

Security update for samba (important)

2017-05-24 21:12:15

Security update for samba (important)

2017-05-24 15:10:25

Security update for samba (important)

2017-05-24 15:09:57

redhat

(RHSA-2017:1273) Important: samba security update

2017-05-24 07:27:07

(RHSA-2017:1272) Important: samba3x security update

2017-05-24 00:00:00

(RHSA-2017:1271) Important: samba4 security update

2017-05-24 07:26:37

nessus

Slackware 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : samba (SSA:2017-144-01) (SambaCry)

2017-05-25 00:00:00

Ubuntu 14.04 LTS / 16.04 LTS : Samba vulnerability (USN-3296-1)

2017-05-25 00:00:00

openSUSE Security Update : samba (openSUSE-2017-618) (SambaCry)

2017-05-30 00:00:00

cisa

Samba Releases Security Updates

2017-05-24 00:00:00

ibm

Security Bulletin: Vulnerability CVE-2017-7494 in Samba affects IBM i

2019-12-18 14:26:38

Security Bulletin: Samba vulnerability issue in IBM SONAS (CVE-2017-7494)

2018-06-18 00:34:57

Security Bulletin: Open Source Samba Samba Vulnerabilities which is used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-7494)

2018-06-15 07:08:02

openvas

SUSE: Security Advisory (SUSE-SU-2017:1393-1)

2021-04-19 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:1391-1)

2021-06-09 00:00:00

Ubuntu: Security Advisory (USN-3296-1)

2017-05-25 00:00:00

rapid7community

Samba CVE-2017-7494: Scanning and Remediating in InsightVM and Nexpose

2017-05-25 21:22:37

Patching CVE-2017-7494 in Samba: It’s the Circle of Life

2017-05-27 02:51:04

threatpost

Samba Patches Critical Bug Exploitable With One Line Of Code

2017-05-25 12:20:32

Cisco, Netgear Readying Patches for Samba Vulnerability

2017-05-31 13:51:56

Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

2017-06-12 09:34:17

altlinux

Security fix for the ALT Linux 7 package samba-DC version 4.5.10-alt1.M70P.1

2017-05-25 00:00:00

Security fix for the ALT Linux 8 package samba-DC version 4.6.4-alt1

2017-05-24 00:00:00

Security fix for the ALT Linux 8 package samba version 4.6.4-alt1

2017-05-24 00:00:00

oraclelinux

samba4 security update

2017-05-24 00:00:00

samba security update

2017-05-24 00:00:00

samba3x security update

2017-05-26 00:00:00

prion

Remote code execution

2017-05-30 18:29:00

avleonov

New vulnersBot for Telegram with advanced searches and subscriptions

2017-05-28 10:59:52

cisco

Vulnerability in Samba Affecting Cisco Products: May 2017

2017-05-30 19:30:00

zdt

Samba 3.5.0 - Remote code execution Exploit

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load Exploit

2017-05-30 00:00:00

fedora

[SECURITY] Fedora 25 Update: samba-4.5.10-0.fc25

2017-05-27 03:06:08

[SECURITY] Fedora 26 Update: samba-4.6.4-0.fc26

2017-06-03 17:39:59

[SECURITY] Fedora 24 Update: samba-4.4.14-0.fc24

2017-05-27 02:53:53

cisa_kev

Samba Remote Code Execution Vulnerability

2023-03-30 00:00:00

packetstorm

Samba 3.5.0 Remote Code Execution

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load

2017-05-27 00:00:00

Samba is_known_pipename() Code Execution

2017-06-02 00:00:00

securelist

SambaCry is coming

2017-06-09 22:07:16

ubuntu

Samba vulnerability

2017-05-24 00:00:00

Samba vulnerability

2017-05-24 00:00:00

centos

samba4 security update

2017-05-25 13:07:15

ctdb, libsmbclient, libwbclient, samba security update

2017-05-25 13:08:37

myhack58

Samba remote code execution vulnerability(CVE-2017-7494)-SambaCry analysis report-vulnerability warning-the black bar safety net

2017-05-28 00:00:00

SambaCry exploit analysis-exploit warning-the black bar safety net

2017-06-13 00:00:00

Vulnerability warning|Samba remote code execution vulnerability, affecting 7 years ago version-bug warning-the black bar safety net

2017-05-25 00:00:00

exploitpack

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

samba

Remote code execution from a writable share.

2017-05-24 00:00:00

slackware

[slackware-security] samba

2017-05-24 20:34:46

attackerkb

CVE-2017-7494

2017-05-30 00:00:00

redhatcve

CVE-2017-7494

2021-03-13 22:06:40

osv

samba - security update

2017-05-24 00:00:00

CVE-2017-7494

2017-05-30 18:29:00

samba - security update

2017-05-24 00:00:00

ics

Potential Legacy Risk from Malware Targeting QNAP NAS Devices

2020-08-06 12:00:00

nvd

CVE-2017-7494

2017-05-30 18:29:00

thn

7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

2017-05-24 20:23:00

CowerSnail — Windows Backdoor from the Creators of SambaCry Linux Malware

2017-07-27 00:40:00

Warning! Hackers Started Using "SambaCry Flaw" to Hack Linux Systems

2017-06-10 01:16:00

debiancve

CVE-2017-7494

2017-05-30 18:29:00

saint

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

metasploit

Samba is_known_pipename() Arbitrary Module Load

2017-05-25 00:42:04

seebug

Samba remote code execution vulnerability(CVE-2017-7494)

2017-05-25 00:00:00

checkpoint_advisories

Linux EternalRed Samba Remote Code Execution (CVE-2017-7494)

2017-05-25 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 09:17:29

ubuntucve

CVE-2017-7494

2017-05-24 00:00:00

archlinux

[ASA-201705-22] samba: arbitrary code execution

2017-05-30 00:00:00

debian

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DLA 951-1] samba security update

2017-05-24 08:11:20

freebsd

samba -- remote code execution vulnerability

2017-05-24 00:00:00

huawei

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-06-13 00:00:00

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-11-29 00:00:00

alpinelinux

CVE-2017-7494

2017-05-30 18:29:00

K13551136 : Samba remote code execution vulnerability CVE-2017-7494

2017-05-25 00:00:00

talosblog

Samba Vulnerability: Dancing Its Way to a Network Near You

2017-05-25 00:31:00

cvelist

CVE-2017-7494

2017-05-30 18:00:00

cve

CVE-2017-7494

2017-05-30 18:29:00

qualysblog

Samba Vulnerability CVE-2017-7494

2017-05-26 20:32:57

exploitdb

Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - 'is_known_pipename()' Arbitrary Module Load (Metasploit)

2017-05-29 00:00:00

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

nmap

http-ntlm-info NSE Script

2014-02-07 18:24:17

versant-info NSE Script

2012-03-08 17:51:48

targets-ipv6-multicast-invalid-dst NSE Script

2011-09-02 04:11:00

0.973 High

EPSS

Percentile

99.9%

JSON

Immunity Canvas: SAMBA_IS_KNOWN_PIPENAME

Related