[ALUG] SAMBA vulnerability

Andreas Tauscher ta at geuka.net
Tue Jun 13 12:34:58 EAT 2017


It is used. At least since 29. April.
https://securelist.com/sambacry-is-coming/78674/

Am 2. Juni 2017 13:07:19 GMT+03:00 schrieb Andreas Tauscher via Linux <linux at mail.habari.co.tz>:
>On 25.05.2017 11:18, Howard Frederick via Linux wrote:
>> This looks scary, but no reports of attacks in the wild yet?
>
>Since this bug became known my firewalls logging a significant
>increased
>amount of access to the SMB ports.
>
>A proof-of-concept exploit exists and a Metasploit module also. Pretty
>sure somebody was reading the pathches and putting all the information
>together...
>
>If you have a unpatched Windows or Samba exposed to the internet with
>SMB ports open I'm sure you are in trouble already.
>
>Andreas

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.


More information about the Linux mailing list