SambaCry! Samba CVE-2017-7494 Remote Code Execution Vulnerability
Description: All versions of Samba from 3.5.0 onward are vulnerable to a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
Impact: Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.
Mitigation: Security patch is available in Samba official site.
Reference URL’s:
- https://www.samba.org/samba/security/CVE-2017-7494.html
- https://www.samba.org/samba/history/security.html
- http://www.securityfocus.com/bid/98636/discuss
Recommended Posts
Press release April 2023: Situational Security Alerts from CIRT
21 Apr 2023 - Articles, English articles, News, Notice, Security Advisories & Alerts

Security Best Practices
29 Mar 2023 - Security Advisories & Alerts