Samba is open-source software (re-implementation of SMB networking protocol) that runs on the bulk of operating systems available today, including Windows, Linux, UNIX, IBM System 390, too OpenVMS.
Samba allows non-Windows operating systems, similar GNU/Linux or Mac OS X, to part network shared folders, files, too printers amongst Windows operating system.
The newly discovered remote code execution vulnerability (CVE-2017-7494) affects all versions newer than Samba 3.5.0 that was released on March 1, 2010.
"All versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing a malicious customer to upload a shared library to a writable share, too thus campaign the server to charge too execute it," Samba wrote inward an advisory published Wednesday.
Linux version of EternalBlue Exploit?
...or should I say SambaCry?
Keeping inward heed the number of vulnerable systems too ease of exploiting this vulnerability, the Samba flaw could travel exploited at large scale amongst wormable capabilities.
Home networks amongst network-attached storage (NAS) devices could too travel vulnerable to this flaw.
Exploit Code Released! (Bonus: Metasploit Module)
The vulnerability is hell tardily to exploit. Just 1 trouble of code is required to execute malicious code on the affected system.
simple.create_pipe("/path/to/target.so")However, the Samba exploit has already been ported to Metasploit, a penetration testing framework, enabling researchers every bit good every bit hackers to exploit this flaw easily.
Patch too Mitigations
The maintainers of Samba has already patched the issue inward their novel versions Samba versions 4.6.4/4.5.10/4.4.14, too are urging those using a vulnerable version of Samba to install the land every bit presently every bit possible.
But if y'all tin give the sack non upgrade to the latest versions of Samba immediately, y'all tin give the sack piece of work approximately the vulnerability past times adding the next trouble to your Samba configuration file smb.conf:
nt pipage back upwards = noOnce added, restart the network's SMB daemon (smbd) too y'all are done. This modify volition preclude clients from fully accessing some network machines, every bit good every bit disable some expected functions for connected Windows systems.
While Linux distribution vendors, including Red Hat too Ubuntu, receive got already released patched versions for its users, the larger adventure is that from NAS device consumers that powerfulness non travel updated every bit quickly.
Craig Williams of Cisco said that given the fact that well-nigh NAS devices run Samba too receive got rattling valuable data, the vulnerability "has potential to travel the showtime large-scale Linux ransomware worm."
Update: Samba maintainers receive got too provided patches for older too unsupported versions of Samba.
Meanwhile, Netgear released a security advisory for CVE-2017-7494, maxim a large number of its routers too NAS production models are affected past times the flaw because they job Samba version 3.5.0 or later.
However, the society currently released firmware fixes for solely ReadyNAS products running OS 6.x.
