CVE-2017-7494

This Metasploit module exploits CVE-2017-7494, a vulnerability in Samba that allows arbitrary shared library loading. It uploads a malicious .so file to a writable SMB share and triggers its execution via a DCERPC call.

This exploit targets CVE-2017-7494, a remote code execution vulnerability in Samba versions 3.5.0 to 4.5.4/4.5.10/4.4.14. It leverages a flaw in the SMB protocol to execute arbitrary code on the target system via a malicious shared library.

This repository provides a curated list of references and external links to PoCs for CVE-2017-7494, a remote code execution vulnerability in Samba. It includes links to Metasploit modules, GitHub PoCs, and technical analyses but does not contain direct exploit code.

This repository contains a functional exploit for CVE-2017-7494 (SambaCry), which allows remote authenticated users to upload a shared library to a writable share and execute arbitrary code via a crafted named pipe. The exploit includes a Python script to trigger the vulnerability and a C-based bind shell payload.

This is a functional exploit for CVE-2017-7494, a remote code execution vulnerability in Samba. It compiles a malicious shared library, uploads it to a writable share, and loads it to achieve a reverse shell with root privileges.

This repository contains a proof-of-concept exploit for CVE-2017-7494, a remote code execution vulnerability in Samba. The exploit leverages a shared library loaded via a malicious module path to trigger the vulnerability.

This repository contains an Nmap NSE script for detecting CVE-2017-7494, a remote code execution vulnerability in Samba. The script is designed to identify vulnerable Samba servers without exploiting them.

This is a functional exploit for CVE-2017-7494, a remote code execution vulnerability in Samba versions 3.5.0 to 4.5.4/4.5.10/4.4.14. It generates a shared library payload, uploads it to writable Samba shares, and triggers execution via brute-forced paths.

This repository provides a curated list of references and external links to PoCs for CVE-2017-7494, a remote code execution vulnerability in Samba. It includes links to Metasploit modules, GitHub PoCs, and technical analyses but does not contain direct exploit code.

This repository contains a functional exploit for CVE-2017-7494 (SambaCry), which leverages a shared library upload and execution to achieve remote code execution via a bind shell. The exploit includes a C-based bind shell payload and a Python script to trigger the vulnerability.

This repository contains a functional exploit for CVE-2017-7494, a remote code execution vulnerability in Samba. The exploit compiles a malicious shared library, uploads it to a writable share, and triggers its execution via the `is_known_pipename` vulnerability.

This repository contains a working exploit for CVE-2017-7494, targeting Samba versions 3.5.0 to 4.6.3. It leverages a logic flaw in the `smb_probe_module` function to load a malicious shared library, resulting in remote code execution (RCE) via a reverse shell.

This repository contains a functional exploit for CVE-2017-7494, a remote code execution vulnerability in Samba. It includes a Python exploit script, a bind shell payload, and a Docker environment for testing.

This repository contains a functional exploit for CVE-2017-7494 (SambaCry), which allows remote authenticated users to upload a shared library to a writable share and execute arbitrary code via a crafted named pipe. The exploit includes a bind shell payload and a Python script to trigger the vulnerability.

This repository contains a README linking to a blog post about CVE-2017-7494, a remote code execution vulnerability in Samba. No actual exploit code is present.

This repository contains a functional exploit for CVE-2017-7494, a remote code execution vulnerability in Samba. The exploit compiles a malicious shared library, uploads it to a writable Samba share, and triggers its execution to achieve a reverse shell.

This repository provides an Ansible-based deployment of a vulnerable Samba server (version 4.5.9) affected by CVE-2017-7494, a critical RCE vulnerability. It is designed for training and competition purposes, allowing attackers to exploit the vulnerability via malicious shared object uploads.

This repository contains only a README file describing an Ansible playbook for deploying CVE-2017-7494 (SambaCry) but lacks actual exploit code or implementation details.

This is a functional exploit for CVE-2017-7494, a remote code execution vulnerability in Samba. It compiles a malicious shared library, uploads it to a writable share, and loads it via a vulnerable RPC endpoint to achieve a reverse shell.

This repository contains a Docker setup for Samba but lacks actual exploit code for CVE-2017-7494. It only starts Samba services and drops into a shell.

This repository contains a README describing CVE-2017-7494, a critical remote code execution vulnerability in Samba. It provides details on affected versions and the patch release but does not include exploit code.

This repository contains a vulnerable Docker container for CVE-2017-7494, a remote code execution vulnerability in Samba. The provided files include Samba source code and build configurations, likely used to demonstrate the exploit in a controlled environment.

This repository contains a README describing CVE-2017-7494, a remote code execution vulnerability in Samba, but lacks actual exploit code. It includes a link to a video demonstration.

This PoC exploits CVE-2017-7494, a remote code execution vulnerability in Samba, by uploading a malicious shared library (`libsamba.so`) and triggering its execution via a crafted pipe name. The library contains a reverse shell payload connecting to a specified IP and port.

This is a Metasploit module for CVE-2017-7494, which exploits a vulnerability in Samba allowing arbitrary shared library load. It requires valid credentials and a writeable share to upload and execute a malicious library.

This Metasploit module exploits CVE-2017-7494, a vulnerability in Samba that allows arbitrary shared library loading. It requires valid credentials, a writable SMB share, and server-side path knowledge to upload and execute a malicious payload.