SoylentNews

7-Year-Old Samba Flaw Lets Hackers Access Thousands of Linux PCs Remotely

posted by on Saturday May 27 2017, @12:47PM   
from the WannaCryToo dept.

An Anonymous Coward writes:

Hackernews reports:

A 7-year-old critical remote code execution vulnerability has been discovered in Samba networking software that could allow a remote attacker to take control of an affected Linux and Unix machines.

[...] The newly discovered remote code execution vulnerability (CVE-2017-7494) affects all versions newer than Samba 3.5.0 that was released on March 1, 2010.

"All versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it," Samba wrote in an advisory published Wednesday.

---

Original Submission

• Re:Only if stupid(Score: 2, Informative) by Anonymous Coward on Saturday May 27 2017, @02:24PM

  by Anonymous Coward on Saturday May 27 2017, @02:24PM (#516417)

  In order for this flaw to be exploited, you have to expose your file-sharing port on the Internet, and the share has to be writable. So, sure, it's a flaw. But you also have to be pretty stupid.

  No.

  You might have a case if it was about people going out of their way to enable that on their desktops, but we're talking NAS devices here. Those are mass-market products. You can't expect from the average user to have the level of knowledge and suspicion as a seasoned Linux sysadmin.

  If people want to have access to their files over the Internet, they'll buy a NAS and set it up according to the manual. Any security holes resulting from the default setup are on the manufacturer.

  Parent

  Starting Score:	0		points
  Moderation		+2
  Interesting=1, Informative=1, Total=2
  Extra 'Informative' Modifier		0
  Total Score:		2