Smaba remote shell command injection (username map script)
Article Directory
1. Vulnerability description
Vulnerability number CVE-2007-2447
Disclosure time 2007-05-14
"username map script" is a remote command injection execution vulnerability of the Samba protocol.
Vulnerability path exploit/multi/samba/usermap_script
affects version samba 3.0.20-3.0.25
2. Vulnerability exploitation process
- Scan the target machine Samba service version to determine that its service version is in the affected version of this vulnerability
- Using the msf framework, use exploit/multi/samba/usermap_script for vulnerability exploitation
- Set its related parameters and finally implement the attack
2. Vulnerability experiment steps
Attack machine: kali linux 192.168.75.129
Target machine: Metasploitable2-linux 192.168.75.128
Scan the target machine Samba service version
msfconsole Open msf and
search for "username map script" vulnerability module
Use this module to
view module details
View configuration
Set target target machine
Set bind_netcat load
Related configuration has been set
Execute the module to infiltrate
successfully and gain the target root privilege.