NOMISEC-SeifEldienAhmad/Penetration-Testing-on-Metasploitable2

NOMISEC WRITEUP

Exploit for CVE-2007-2447 - Samba 3.0.0-3.0.25rc3 - Command Injection

AI Analysis

This repository documents a penetration testing workflow targeting Metasploitable2, including exploitation of CVE-2007-2447 (Samba usermap_script vulnerability) using Metasploit. It provides detailed steps, commands, and mitigation recommendations but does not include standalone exploit code.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 2

https://github.com/SeifEldienAhmad/Penetration-Testing-on-Metasploitable2

Stars 1

Forks 0

Last Push Sep 13, 2025

Authors

SeifEldienAhmad

Vulnerability

CVE-2007-2447

Samba 3.0.0-3.0.25rc3 - Command Injection