NOMISEC-G01d3nW01f/CVE-2007-2447

NOMISEC WORKING POC

Exploit for CVE-2007-2447 - Samba 3.0.0-3.0.25rc3 - Command Injection

AI Analysis

This repository contains a functional exploit for CVE-2007-2447, targeting Samba 3.0.20. The exploit leverages command injection via the 'username' field in SMB authentication to achieve remote code execution (RCE) by spawning a reverse shell.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 2

https://github.com/G01d3nW01f/CVE-2007-2447

Stars 0

Forks 0

Last Push Apr 16, 2021

Authors

G01d3nW01f

Vulnerability

CVE-2007-2447

Samba 3.0.0-3.0.25rc3 - Command Injection