Back to KEVs

CVE-2017-7494

Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to...

Basic Information

CVE State
PUBLISHED
Reserved Date
April 05, 2017
Published Date
May 30, 2017
Last Updated
February 07, 2025
Vendor
Samba
Product
samba
Description
Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.

CVSS Scores

CVSS v3.1

9.8 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC Information

Exploitation
active
Automatable
Yes
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (added 2023-03-30 00:00:00 UTC) Source
Proof of Concept Available
Yes (added 2021-09-29 20:31:20 UTC) Source
Used in Malware
Yes (added 2023-03-30 00:00:00 UTC) Source

References

http://www.securityfocus.com/bid/98636 http://www.debian.org/security/2017/dsa-3860 https://www.exploit-db.com/exploits/42084/ https://access.redhat.com/errata/RHSA-2017:1270 https://www.samba.org/samba/security/CVE-2017-7494.html https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2018-095-01+Security+Notification+Umotion+V1.1.pdf&p_Doc_Ref=SEVD-2018-095-01 https://access.redhat.com/errata/RHSA-2017:1390 http://www.securitytracker.com/id/1038552 https://access.redhat.com/errata/RHSA-2017:1273 https://access.redhat.com/errata/RHSA-2017:1271 https://security.gentoo.org/glsa/201805-07 https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03759en_us https://access.redhat.com/errata/RHSA-2017:1272 https://security.netapp.com/advisory/ntap-20170524-0001/ https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03755en_us https://www.exploit-db.com/exploits/42060/

Known Exploited Vulnerability Information

Source Added Date
CISA 2023-03-30 00:00:00 UTC

Scanner Integrations

Scanner URL Date Detected
Metasploit https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/samba/is_known_pipename.rb 2025-04-29 11:01:18 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

is_known_pipename

Type: metasploit • Created: Unknown

Metasploit module for CVE-2017-7494

d3fudd/CVE-2017-7494_SambaCry

Type: github • Created: 2022-11-01 23:17:25 UTC • Stars: 5

SambaCry (CVE-2017-7494) exploit for Samba | bind shell without Metasploit

00mjk/exploit-CVE-2017-7494

Type: github • Created: 2022-05-29 16:27:13 UTC • Stars: 1

SambaCry exploit (CVE-2017-7494)

adjaliya/-CVE-2017-7494-Samba-Exploit-POC

Type: github • Created: 2021-09-29 20:31:20 UTC • Stars: 0

According to researchers with Rapid7, over 110,000 devices appear on internet, which run stable Samba versions, while 92,500 seem to run unstable Samba versions, for which there is no fix. The newest Samba models, including the models 4.6.x before 4.6.4, 4.5.x before 4.5.10 and 3.5.0 before 4.4.13, was impacted by this error. May 24, 2017, Samba released version 4.6.4, which fixes a serious remote code execution vulnerability, vulnerability number CVE-2017-7494, which affected Samba 3.5.0 onwards. Vulnerability number: CVE-2017-7494 Severity Rating: High Affected software: • Samba Version < 4.6.4 • Samba Version < 4.5.10 • Samba Version < 4.4.14 Unaffected software: • Samba Version = 4.6.4 • Samba Version = 4.5.10 • Samba Version = 4.4.14

0xm4ud/noSAMBAnoCRY-CVE-2017-7494

Type: github • Created: 2021-05-09 02:32:54 UTC • Stars: 4

CVE-2017-7494 python exploit

Hansindu-M/CVE-2017-7494_IT19115344

Type: github • Created: 2020-05-10 21:17:55 UTC • Stars: 0

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root.

incredible1yu/CVE-2017-7494

Type: github • Created: 2018-05-10 08:12:31 UTC • Stars: 0

CVE-2017-7494 C poc

Zer0d0y/Samba-CVE-2017-7494

Type: github • Created: 2017-07-28 06:21:29 UTC • Stars: 1

搭建漏洞利用测试环境

joxeankoret/CVE-2017-7494

Type: github • Created: 2017-06-05 16:25:57 UTC • Stars: 257

Remote root exploit for the SAMBA CVE-2017-7494 vulnerability

opsxcq/exploit-CVE-2017-7494

Type: github • Created: 2017-05-26 00:58:25 UTC • Stars: 381

SambaCry exploit and vulnerable container (CVE-2017-7494)

homjxi0e/CVE-2017-7494

Type: github • Created: 2017-05-25 14:13:10 UTC • Stars: 0