目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡
获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2007-2447 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled, and allows remote authenticated users to execute commands via shell metacharacters involving other MS-RPC functions in the (2) remote printer and (3) file share management.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Samba MS-RPC Shell命令注入漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Samba是Samba团队开发的一套可使UNIX系列的操作系统与微软Windows操作系统的SMB/CIFS网络协议做连结的自由软件。该软件支持共享打印机、互相传输资料文件等。 Samba在处理用户数据时存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上执行任意命令。 Samba中负责在SAM数据库更新用户口令的代码未经过滤便将用户输入传输给了/bin/sh。如果在调用smb.conf中定义的外部脚本时,通过对/bin/sh的MS-RPC调用提交了恶意输入的话,就可能允许攻击者以nobody用户的权限执
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
厂商产品影响版本CPE订阅
-n/a n/a -
二、漏洞 CVE-2007-2447 的公开POC
#POC 描述源链接神龙链接
1CVE-2007-2447 - Samba usermap scripthttps://github.com/amriunix/CVE-2007-2447POC详情
2A simple exploit for CVE-2007-2447https://github.com/b1fair/smb_usermapPOC详情
3Remote Command Injection Vulnerability (CVE-2007-2447), allows remote attackers to execute arbitrary commands by specifying a Samba username containing shell meta characters.https://github.com/JoseBarrios/CVE-2007-2447POC详情
4Nonehttps://github.com/3x1t1um/CVE-2007-2447POC详情
5Exploit for the vulnerability CVE-2007-2447https://github.com/xlcc4096/exploit-CVE-2007-2447POC详情
6Nonehttps://github.com/WildfootW/CVE-2007-2447_Samba_3.0.25rc3POC详情
7Python implementation of 'Username' map script' RCE Exploit for Samba 3.0.20 < 3.0.25rc3 (CVE-2007-2447).https://github.com/Ziemni/CVE-2007-2447-in-PythonPOC详情
8Nonehttps://github.com/0xKn/CVE-2007-2447POC详情
9Exploit Sambahttps://github.com/ozuma/CVE-2007-2447POC详情
10Samba 3.0.20 username map script exploithttps://github.com/un4gi/CVE-2007-2447POC详情
11cve-2007-2447 this script was rewrite the part of Metasploit modules to python3https://github.com/G01d3nW01f/CVE-2007-2447POC详情
12 Samba usermap script.https://github.com/cherrera0001/CVE-2007-2447POC详情
13CVE-2007-2447 - Samba usermap scripthttps://github.com/Alien0ne/CVE-2007-2447POC详情
14Nonehttps://github.com/3t4n/samba-3.0.24-CVE-2007-2447-vunerable-POC详情
15Exploit code for CVE-2007-2447 written in Python3.https://github.com/xbufu/CVE-2007-2447POC详情
16Nonehttps://github.com/s4msec/CVE-2007-2447POC详情
17Nonehttps://github.com/0xConstant/CVE-2007-2447POC详情
18CVE-2007-2447https://github.com/Nosferatuvjr/Samba-Usermap-exploitPOC详情
19Nonehttps://github.com/testaross4/CVE-2007-2447POC详情
20CVE-2007-2447 samba remote code executionhttps://github.com/mr-l0n3lly/CVE-2007-2447POC详情
21CVE-2007-2447 exploit written in python to get reverse shellhttps://github.com/HerculesRD/PyUsernameMapScriptRCEPOC详情
22automated script for exploiting CVE-2007-2447https://github.com/Aviksaikat/CVE-2007-2447POC详情
23Nonehttps://github.com/crypticdante/CVE-2007-2447POC详情
24Exploit i used in HTBhttps://github.com/bdunlap9/CVE-2007-2447_pythonPOC详情
25Samba 3.0.20https://github.com/MikeRega7/CVE-2007-2447-RCEPOC详情
26Samba Reverse Shellhttps://github.com/0xTabun/CVE-2007-2447POC详情
27Nonehttps://github.com/ShivamDey/Samba-CVE-2007-2447-ExploitPOC详情
28Nonehttps://github.com/H3xL00m/CVE-2007-2447POC详情
29Nonehttps://github.com/n3ov4n1sh/CVE-2007-2447POC详情
30Samba 3.0.0 - 3.0.25rc3https://github.com/Juantos/cve-2007-2447POC详情
31Nonehttps://github.com/c0d3cr4f73r/CVE-2007-2447POC详情
32Exploit Samba smbd 3.0.20-Debianhttps://github.com/Sp3c73rSh4d0w/CVE-2007-2447POC详情
33This is a exploit for CVE-2007-2447; Vulnerable SMB https://github.com/IamLucif3r/CVE-2007-2447-ExploitPOC详情
34Exploit Samba smbd 3.0.20-Debianhttps://github.com/0xwh1pl4sh/CVE-2007-2447POC详情
35Exploit Samba smbd 3.0.20-Debianhttps://github.com/N3rdyN3xus/CVE-2007-2447POC详情
36Exploit Samba smbd 3.0.20-Debianhttps://github.com/NyxByt3/CVE-2007-2447POC详情
37Exploit Samba smbd 3.0.20-Debianhttps://github.com/h3xcr4ck3r/CVE-2007-2447POC详情
38Exploit Samba smbd 3.0.20-Debianhttps://github.com/n3rdh4x0r/CVE-2007-2447POC详情
39Nonehttps://github.com/banomaly/CVE-2007-2447POC详情
40Nonehttps://github.com/foudadev/CVE-2007-2447POC详情
41CVE-2007-2447 samba remote code executionhttps://github.com/b3m0x00/CVE-2007-2447POC详情
42CVE-2007-2447 samba remote code executionhttps://github.com/b33m0x00/CVE-2007-2447POC详情
43Nonehttps://github.com/elphon/CVE-2007-2447-ExploitPOC详情
44Exploit Samba smbd 3.0.20-Debianhttps://github.com/h3x0v3rl0rd/CVE-2007-2447POC详情
45Nonehttps://github.com/DevinLiggins14/SMB-PenTest-Exploiting-CVE-2007-2447-on-Metasploitable-2POC详情
46just remeber how small mistake in santisize username could give yoy root access to the full machine https://github.com/MrRoma577/exploit_cve-2007-2447_againPOC详情
47A Rust implementation of the CVE-2007-2447 exploit targeting Samba smbd 3.0.20-Debian.https://github.com/nika0x38/CVE-2007-2447POC详情
48Hands-on pentest project using Kali Linux vs Metasploitable2. Includes full workflow: Nmap scanning, enumeration, Metasploit exploitation (Samba CVE-2007-2447), post-exploitation validation, and mitigation steps. Repo contains commands, outputs, and report showing both offensive techniques and defensive recommendations.https://github.com/SeifEldienAhmad/Penetration-Testing-on-Metasploitable2POC详情
49Nonehttps://github.com/nulltrace1336/Samba-Exploit-CVE-2007-2447POC详情
50Nonehttps://github.com/abdulsaabir/CVE-2007-2447POC详情
51Samba 3.0.20 CVE-2007-2447 Exploithttps://github.com/r0tn3x/CVE-2007-2447POC详情
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC
三、漏洞 CVE-2007-2447 的情报信息
Please 登录 to view more intelligence information
IV. Related Vulnerabilities
Same product: n/a
Same vendor: n/a
V. Comments for CVE-2007-2447

暂无评论

发表评论