Skip to main content

Samba’s “One Line Of Code” Exploit Could Make Linux Vulnerable To WannaCry-like Attack, Patch Now


SAMBA FLAW LINUX WANNACRY
Researchers have warned that Linux and Unix machines are affected by a Samba exploit that could allow an attacker to take control of the systems. This could open doors to attacks similar to WannaCry. The Samba team and developers have pushed patches to fix
the flaw.
Samba is a free software license under the GNU GPL license that’s widely used on Linux and Unix computers for making them work with Windows file and printing services. A security vulnerability in Samba could leave hundreds and thousands of computers open to attacks.
With ID CVE-2017-7494, the vulnerability has been described as remote code execution from a writable share. As per the description, this flaw could allow malicious users to upload and make the smdb server to execute a shared library from a writable share.
Nick Bilogorskiy of Cyphort says that there are no active exploits in the wild, but the damage from Samba vulnerability could be steep, according to TechTarget. This flaw affects Samba versions 3.5 and newer.
This is because the vulnerability can allow remote code execution and an attacker can gain full control over a computer. This flaw isn’t exactly new, but recent developments showed that it’s more serious than expected.
Having seen the wrath of WannaCry ransomware in recent weeks, comparisons between Samba flaw and WannaCry are unavoidable. The experts have outlined that like WannaCry, Samba flaw can be used as a conduit for a wormhole exploit for quick expansion.
It should also be noted that an exploit which uses Samba flaw would make use of the bugs in the same SMB protocol used by the WannaCry’s NSA tools.
Earlier this week, The Samba Team, a group of 40 developers, released the patch to address this vulnerability. Apart from that, adding the “nt pipe support = no” to smb.conf file and restarting the service mitigates the threat, writes Cisco in a security bulletin.

Comments

Follow Us

WHAT'S HOT

Best Android Cleaner Apps You Need To Try Out Now

Cache files pile up over time and need to be cleared. Also, junk from ads and image thumbnails take up a lot of space. Android cleaner apps do a good job of finding unnecessary files and

84-year-old woman dies after being stung more than 500 times by swarm of bees (photos)

An 84-year-old woman from Brazil died after she was stung by a whole beehive She was out collecting firewood when she disturbed the bees who stung her until rescuers arrived The old woman died from the beestings on her way to the hospital 84-year-old Divina Ambrósio de Jesus from Brazil recently died after she got stung by a swarm of bees. The beestings covered the old woman's body including her face The old lady was out collecting firewood when she accidentally disturbed a beehive. The bees repeatedly sting the old lady for 30 minutes.

How To Connect Android or iOS Phone To Windows 10

The  Continue on PC  feature is currently available to Windows Insiders, but it’ll arrive for regular users once the update starts landing on their PCs. If you’re running an Insider build, you can use the steps mentioned in this post to connect your phone to Windows 10 PC.

MUSIC: Dr SID – Greater Things (Prod. By Babyfresh)

Mavins  main man , Dr Sid  serves us with  Greater Things.  Gonna are the days wey no money for pocket,baba God don do am for me.