On May 24, 2017, samba released version 4.6.4, which fixed a serious Remote Code Execution Vulnerability, The vulnerability number is cve-2017-7494.
Samba 3.5.0-4.6.4/4.5.10/4.4.14,The version after 4.6.4/4.5.10/4.4.14 has fixed the vulnerability.
Download the iso.
yum install samba
service smb restart
Samba is executed as root by default, so the vulnerability can get root permission directly.
When it shows :[-] 192.168.1.106:445 - Exploit failed [unreachable]: Rex::HostUnreachable The host (192.168.1.106:445) was unreachable.
It could be the iptables or selinux prevented the connect.
clear the iptables’s rules or stop iptables.
iptables -F #clear the iptables's rules
append line: nt pipe support=no
- 1. Describe
- 2. System affected by vulnerability
- 3. Reappearance
- 4. Solution