NOMISEC-ozuma/CVE-2007-2447

NOMISEC WORKING POC

Exploit for CVE-2007-2447 - Samba 3.0.0-3.0.25rc3 - Command Injection

AI Analysis

This repository contains a functional exploit for CVE-2007-2447, a command injection vulnerability in Samba's usermap script. The exploit leverages the username field in SMB authentication to execute arbitrary commands, resulting in remote code execution.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 3

https://github.com/ozuma/CVE-2007-2447

Stars 1

Forks 2

Last Push Mar 14, 2021

Authors

ozuma

Vulnerability

CVE-2007-2447

Samba 3.0.0-3.0.25rc3 - Command Injection