Linux¥D¾÷¡AÄ~windows¥D¾÷Ãz¥Xº|¬}«á¡A°ê¥~ªºÀb«È²Õ´¤S©ñ¥X¤FLinux¨t²Îªº³o
Óº|¬}¬O°ò©ósambaªA°Èªº»·µ{¥N½X°õ¦æº|¬}¡C¦M®`ÄY«©Ê¸û°ª¡A¥i¥Hª½±µÀò¨úLinux centos
¥D¾÷ªººÞ²zûÅv¡A¸g¹L§ÚÌeSafe¥Õ´U¸ê¦wºô§Þ³N¤Hûªºº¯³z´ú¸Õµo²{¡A¦bubuntu¡Acentos¨t²Î
ªº¥D¾÷¤W³£´ú¸Õ¦¨¥\¡CÃö©ó¦¹º|¬}ªº¸Ô±¡¦p¤U¡G
Ãö©ó¦¹º|¬}¤½¶}¦bgithub¤W¡A²Ó¸`¦p¹Ï©Ò¥Ü¡G
Ãö©ó¦¹º|¬}¤½¶}¦bgithub¤W¡A²Ó¸`¦p¹Ï©Ò¥Ü¡G
Å骺¦w¥þªA°È´£¨Ñ°Ó¡C
§â¤W¹Ïªºµ{§Ç¥N½X½Æ»s¤U¨Ó¡A½Æ»s¨ì§ðÀ»¾÷¾¹¸Ì¡A¤]¥i¥H¥ÎLinux Wget¤U¸ü¨ì¥D¾÷¤W¡C
use exploit/linux/samba/is_known_pipename
Set rhost 192.168.0.208
Set target 3
°õ¦æReload_all©R¥O¡A«·s¥[¸üLinux¥þ³¡¤å¥ó¡C
¨ü¼vÅTªºª©¥»ƒÜSamba Version > 3.5.0
¦blinux¨t²Î¤U°õ¦æsmbd --version ¬d¬Ý·í«esambaªºª©¥»¡A¦pªG¬O¤j©ó3.5 ¡A©ÎªÌª©¥»¬Oµ¥©ó4.6.4ªº´Nªí©ú¦s¦bº|¬}¡C¦A¤@Óº|¬}§Q¥Îªº«e´£¬On¶}©ñ445ºÝ¤f¡C
Ãö©ólinux¥D¾÷º|¬}ªº×´_«Øij¡G
Ãö³¬linux¨t²Îªº445ºÝ¤f¡A§Q¥Îiptables¶i¦æ¨î¡C
¤É¯ÅSamba¨ì³Ì·sª©¥»
×´_º|¬}«á°õ¦æ
eSafe¥Õ´U¸ê¦wºô¤½¥q¬O¤@®a±Mª`©ó¡G¥D¾÷¦w¥þ¡Bºô¯¸¦w¥þ¡Bºô¯¸¦w¥þÀË´ú¡Bºô¯¸¦w¥þ´ú¸Õ¡B©ó¤@
Å骺¦w¥þªA°È´£¨Ñ°Ó¡C
pm -q samba --changelog |grep CVE-2017-7497 ¬d¬Ý¦³¨S¦³×´_¦¨¥\¡C
