Lucene search

Huawei TechnologiesHUAWEI-SA-20170613-01-SAMBA

HistoryJun 13, 2017 - 12:00 a.m.

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-06-1300:00:00

Huawei Technologies

www.huawei.com

0.973 High

EPSS

Percentile

99.9%

JSON

All versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing an authenticated attacker to upload a shared library to a writable share and execute arbitrary code remotely on a targeted system. Samba 4.6.4, 4.5.10 and 4.4.14 have been issued as security releases to correct the defect. (Vulnerability ID: HWPSIRT-2017-05176)
This vulnerability has been assigned a CVE ID: CVE-2017-7494.
Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170613-01-samba-en

CPENameOperatorVersion
oceanstor n8500eqV200R002C00
oceanstor vtl6900eqV100R005C10
oceanstor n8300eqV100R002C00
oceanstor n8500eqV200R001C00

Name	Operator	Version
oceanstor n8500	eq	V200R002C00
oceanstor vtl6900	eq	V100R005C10
oceanstor n8300	eq	V100R002C00
oceanstor n8500	eq	V200R001C00

nessus

RHEL 6 : samba4 (RHSA-2017:1271) (SambaCry)

2017-05-25 00:00:00

RHEL 5 : samba3x (RHSA-2017:1272) (SambaCry)

2017-05-26 00:00:00

RHEL 6 / 7 : samba (RHSA-2017:1390) (SambaCry)

2017-06-06 00:00:00

threatpost

Cisco, Netgear Readying Patches for Samba Vulnerability

2017-05-31 13:51:56

Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

2017-06-12 09:34:17

Samba Patches Critical Bug Exploitable With One Line Of Code

2017-05-25 12:20:32

fedora

[SECURITY] Fedora 25 Update: samba-4.5.10-0.fc25

2017-05-27 03:06:08

[SECURITY] Fedora 26 Update: samba-4.6.4-0.fc26

2017-06-03 17:39:59

[SECURITY] Fedora 24 Update: samba-4.4.14-0.fc24

2017-05-27 02:53:53

cisa_kev

Samba Remote Code Execution Vulnerability

2023-03-30 00:00:00

altlinux

Security fix for the ALT Linux 8 package samba-DC version 4.6.4-alt1

2017-05-24 00:00:00

Security fix for the ALT Linux 8 package samba version 4.6.4-alt1

2017-05-24 00:00:00

Security fix for the ALT Linux 10 package samba version 4.6.4-alt1.S1

2017-05-24 00:00:00

openvas

Fedora Update for samba FEDORA-2017-642a0eca75

2017-05-27 00:00:00

Debian: Security Advisory (DSA-3860-1)

2017-05-23 00:00:00

openSUSE: Security Advisory for samba (openSUSE-SU-2017:1415-1)

2017-05-27 00:00:00

redhat

(RHSA-2017:1271) Important: samba4 security update

2017-05-24 07:26:37

(RHSA-2017:1390) Important: samba security update

2017-06-05 05:47:14

(RHSA-2017:1273) Important: samba security update

2017-05-24 07:27:07

securelist

SambaCry is coming

2017-06-09 22:07:16

centos

samba4 security update

2017-05-25 13:07:15

ctdb, libsmbclient, libwbclient, samba security update

2017-05-25 13:08:37

ubuntu

Samba vulnerability

2017-05-24 00:00:00

Samba vulnerability

2017-05-24 00:00:00

exploitpack

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

samba

Remote code execution from a writable share.

2017-05-24 00:00:00

packetstorm

Samba 3.5.0 Remote Code Execution

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load

2017-05-27 00:00:00

Samba is_known_pipename() Code Execution

2017-06-02 00:00:00

myhack58

Samba remote code execution vulnerability(CVE-2017-7494)-SambaCry analysis report-vulnerability warning-the black bar safety net

2017-05-28 00:00:00

SambaCry exploit analysis-exploit warning-the black bar safety net

2017-06-13 00:00:00

Vulnerability warning|Samba remote code execution vulnerability, affecting 7 years ago version-bug warning-the black bar safety net

2017-05-25 00:00:00

ibm

Security Bulletin: Samba vulnerability issue in IBM SONAS (CVE-2017-7494)

2018-06-18 00:34:57

Security Bulletin: Vulnerability CVE-2017-7494 in Samba affects IBM i

2019-12-18 14:26:38

Security Bulletin: Open Source Samba Samba Vulnerabilities which is used by IBM OS Images for RedHat Linux in IBM PureApplication Systems (CVE-2017-7494)

2018-06-15 07:08:02

slackware

[slackware-security] samba

2017-05-24 20:34:46

redhatcve

CVE-2017-7494

2021-03-13 22:06:40

osv

CVE-2017-7494

2017-05-30 18:29:00

samba - security update

2017-05-24 00:00:00

samba - security update

2017-05-24 00:00:00

nvd

CVE-2017-7494

2017-05-30 18:29:00

thn

7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

2017-05-24 20:23:00

CowerSnail — Windows Backdoor from the Creators of SambaCry Linux Malware

2017-07-27 00:40:00

Warning! Hackers Started Using "SambaCry Flaw" to Hack Linux Systems

2017-06-10 01:16:00

debiancve

CVE-2017-7494

2017-05-30 18:29:00

saint

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

Samba shared library upload and execution

2017-06-08 00:00:00

attackerkb

CVE-2017-7494

2017-05-30 00:00:00

ics

Potential Legacy Risk from Malware Targeting QNAP NAS Devices

2020-08-06 12:00:00

metasploit

Samba is_known_pipename() Arbitrary Module Load

2017-05-25 00:42:04

seebug

Samba remote code execution vulnerability(CVE-2017-7494)

2017-05-25 00:00:00

suse

Security update for samba (important)

2017-05-24 21:12:15

Security update for samba (important)

2017-05-24 15:10:25

Security update for samba (important)

2017-05-24 15:09:57

cisa

Samba Releases Security Updates

2017-05-24 00:00:00

prion

Remote code execution

2017-05-30 18:29:00

oraclelinux

samba4 security update

2017-05-24 00:00:00

samba security update

2017-05-24 00:00:00

samba3x security update

2017-05-26 00:00:00

rapid7community

Samba CVE-2017-7494: Scanning and Remediating in InsightVM and Nexpose

2017-05-25 21:22:37

Patching CVE-2017-7494 in Samba: It’s the Circle of Life

2017-05-27 02:51:04

cisco

Vulnerability in Samba Affecting Cisco Products: May 2017

2017-05-30 19:30:00

zdt

Samba 3.5.0 - Remote code execution Exploit

2017-05-25 00:00:00

Samba is_known_pipename() Arbitrary Module Load Exploit

2017-05-30 00:00:00

canvas

Immunity Canvas: SAMBA_IS_KNOWN_PIPENAME

2017-05-30 18:29:00

avleonov

New vulnersBot for Telegram with advanced searches and subscriptions

2017-05-28 10:59:52

checkpoint_advisories

Linux EternalRed Samba Remote Code Execution (CVE-2017-7494)

2017-05-25 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 09:17:29

ubuntucve

CVE-2017-7494

2017-05-24 00:00:00

archlinux

[ASA-201705-22] samba: arbitrary code execution

2017-05-30 00:00:00

debian

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DSA 3860-1] samba security update

2017-05-24 07:35:00

[SECURITY] [DLA 951-1] samba security update

2017-05-24 08:11:20

freebsd

samba -- remote code execution vulnerability

2017-05-24 00:00:00

alpinelinux

CVE-2017-7494

2017-05-30 18:29:00

K13551136 : Samba remote code execution vulnerability CVE-2017-7494

2017-05-25 00:00:00

talosblog

Samba Vulnerability: Dancing Its Way to a Network Near You

2017-05-25 00:31:00

huawei

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

2017-11-29 00:00:00

cvelist

CVE-2017-7494

2017-05-30 18:00:00

cve

CVE-2017-7494

2017-05-30 18:29:00

qualysblog

Samba Vulnerability CVE-2017-7494

2017-05-26 20:32:57

exploitdb

Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - 'is_known_pipename()' Arbitrary Module Load (Metasploit)

2017-05-29 00:00:00

Samba 3.5.0 - Remote Code Execution

2017-05-24 00:00:00

nmap

http-qnap-nas-info NSE Script

2012-01-31 20:22:42

informix-query NSE Script

2010-08-19 22:47:52

smb-server-stats NSE Script

2008-11-06 02:52:59

0.973 High

EPSS

Percentile

99.9%

JSON

Security Advisory - Samba Remote Code Execution Vulnerability in Some Huawei Products

Related