CVE-2017-7494

Published: May 30, 2017

Modified: Oct 21, 2025

PUBLISHED

Description

Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.

Vendor	Product	Versions
Samba	samba	affected `since 3.5.0`

References

98636

vdb-entry

x_refsource_BID

DSA-3860

vendor-advisory

x_refsource_DEBIAN

42084

exploit

x_refsource_EXPLOIT-DB

RHSA-2017:1270

vendor-advisory

x_refsource_REDHAT

https://www.samba.org/samba/security/CVE-2017-7494.html

x_refsource_CONFIRM

https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SEVD-2018-095-01+Security+Notification+Umotion+V1.1.pdf&p_Doc_Ref=SEVD-2018-095-01

x_refsource_MISC

RHSA-2017:1390

vendor-advisory

x_refsource_REDHAT

1038552

vdb-entry

x_refsource_SECTRACK

RHSA-2017:1273

vendor-advisory

x_refsource_REDHAT

RHSA-2017:1271

vendor-advisory

x_refsource_REDHAT

GLSA-201805-07

vendor-advisory

x_refsource_GENTOO

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03759en_us

x_refsource_CONFIRM

RHSA-2017:1272

vendor-advisory

x_refsource_REDHAT

https://security.netapp.com/advisory/ntap-20170524-0001/

x_refsource_CONFIRM

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03755en_us

x_refsource_CONFIRM

42060

exploit

x_refsource_EXPLOIT-DB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-7494

Description

Affected Products

References