ET EXPLOIT Samba Arbitrary Module Loading Vulnerability M2 (NT Create AndX .so) (CVE-2017-7494)

SID: 2024384Rev: 320 viewsHistory

Sourceet/open

CreatedJune 16, 2017

UpdatedMarch 24, 2022

Classificationattempted-admin

alert tcp any any -> $HOME_NET 445 (msg:"ET EXPLOIT Samba Arbitrary Module Loading Vulnerability M2 (NT Create AndX .so) (CVE-2017-7494)"; flow:to_server,established; content:"SMB"; offset:5; depth:3; content:"|05 00|"; distance:8; within:2; content:"|00 2e 00 73 00 6f 00|"; fast_pattern; endswith; reference:cve,2017-7494; classtype:attempted-admin; sid:2024384; rev:3; metadata:affected_product Linux, attack_target Server, created_at 2017_06_16, cve CVE_2017_7494, deployment Perimeter, deployment Internal, performance_impact Moderate, confidence Medium, signature_severity Major, tag CISA_KEV, updated_at 2022_03_24;)

References

cve

2017-7494

Metadata

affected productLinux

attack targetServer

created at2017_06_16

cveCVE-2017-7494

deploymentInternal

performance impactModerate

confidenceMedium

signature severityMajor

tagCISA_KEV

updated at2022_03_24

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!