Samba – Page 9 – WindowsTechs.com

Linux SambaCry

Posted on May 25, 2017 by Pedro Umbelino

Great news everyone, Windows is not the only operating system with remote code execution via SMB. Linux has also its own, seven-year-old version of the bug. /s

This Linux remote execution vulnerability (CVE-2017-7494) affects Samba, the Linux re-implementation of the SMB networking protocol, from versions 3.5.0 onwards (since 2010). The SambaCry moniker was almost unavoidable.

The bug, however, has nothing to do on how Eternalblue works, one of the exploits that the current version of WannaCry ransomware packs with. While Eternalblue is essentially a buffer overflow exploit, CVE-2017-7494 takes advantage of an arbitrary shared library load. To exploit it, a …read more

Continue reading Linux SambaCry→

Samba Patches Wormable Bug Exploitable With One Line Of Code

Posted on May 25, 2017 by Tom Spring

The Samba Team has patched a severe bug that leaves computers vulnerable to wormable exploit. Continue reading Samba Patches Wormable Bug Exploitable With One Line Of Code→

A wormable code-execution bug has lurked in Samba for 7 years. Patch now!

Posted on May 24, 2017 by Dan Goodin

Comparisons to the Windows flaw WCry exploited are exaggerated, but only a little. Continue reading A wormable code-execution bug has lurked in Samba for 7 years. Patch now!→

How does the EternalBlue Exploit Work?

Posted on May 16, 2017 by butallmj

I’ve casually googled for explanations on how exactly the EternalBlue exploit works but, I suppose given the media storm about WannaCry, I’ve only been able to find resources that at best say it’s an SMB exploit. I get that there was a bug… Continue reading How does the EternalBlue Exploit Work?→

Samba or ldap-auth-client for LDAP authentication in Ubuntu client machines

Posted on March 8, 2017 by shashwat

We have around 100 employees using PCs, MACs and Linux machines (Ubuntu). I want to implement a central account and user authentication solution.

I am planning to do it with Ubuntu machines first using OpenLDAP. I have unde… Continue reading Samba or ldap-auth-client for LDAP authentication in Ubuntu client machines→

Accessing a samba share on a black box

Posted on January 18, 2017 by SaAtomic

I’m testing a VM from vulnhub and was able to enumerate samba shares with nmap –script smb-enum-shares -p445 <IP>.

The result tells me that there’s the share C:\tmp with read/write access for the guest user.

root@ka… Continue reading Accessing a samba share on a black box→

BADLOCK – Are ‘Branded’ Exploits Going Too Far?

Posted on April 14, 2016 by Darknet

So there’s been hype about this big exploit coming, for over a month, before anything was released. It had a name, a website and a logo – and it was called Badlock. And now it’s out, and it’s more like Sadlock – really a local network DoS against DCE/RPC services on Windows and Linux with […]

The post BADLOCK – Are…

Read the full post at darknet.org.uk

Continue reading BADLOCK – Are ‘Branded’ Exploits Going Too Far?→

What is Badlock and how does it work?

Posted on April 12, 2016 by SEJPM

A while back there was an announcement for the disclosure of a security vulnerability named “Badlock” – including this fancy name and a logo.

The disclosure date was today and I was surprised (and shocked) to read that the a… Continue reading What is Badlock and how does it work?→

Badlock revealed – probably not as bad as you thought

Posted on April 12, 2016 by Paul Ducklin

Stand down from red alert! “Badlock”, a security hole announced in the most publicly secret way in March 2016, has now been patched. Continue reading Badlock revealed – probably not as bad as you thought→

Badlock Vulnerability Falls Flat Against Its Hype

Posted on April 12, 2016 by Michael Mimoso

The much anticipated Badlock vulnerability wasn’t in the SMB protocol after all, but in SAM and LSAD and exposed Windows machines to privilege escalation. Continue reading Badlock Vulnerability Falls Flat Against Its Hype→