Samba is_known_pipename() Arbitrary Module Load

Posted by deepcore on May 28, 2017 – 1:14 pm

This Metasploit module triggers an arbitrary shared library load vulnerability in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This Metasploit module requires valid credentials, a writeable folder in an accessible share, and knowledge of the server-side path of the writeable folder. In some cases, anonymous access combined with common filesystem locations can be used to automatically exploit this vulnerability.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Octopus Deploy Authenticated Code Execution WordPress AffiliateWP 2.0.8 Cross Site Scripting »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Samba is_known_pipename() Arbitrary Module Load

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL