← back
CVE-2007-2447

CVE-2007-2447

EPSS 49.8%
Vexday Risk Score
52Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Popular PoC on GitHub (61 stars) — exploitation code widely available.
CVSS EPSS 49.8%KEV nãoPoC públicaNuclei Metasploit simPatch referenciado
Lifecycle
14 May 2007Metasploit module available
14 May 2007Published on NVD
18 Aug 2010Public PoC
Weaponization speed
1191 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled, and allows remote authenticated users to execute commands via shell metacharacters involving other MS-RPC functions in the (2) remote printer and (3) file share management.
Affected products
n/a · n/a
public PoCs found41
githubgithub.com/amriunix/CVE-2007-244761githubgithub.com/h3x0v3rl0rd/CVE-2007-24475githubgithub.com/Unix13/metasploitable24githubgithub.com/Ziemni/CVE-2007-2447-in-Python3githubgithub.com/Alien0ne/CVE-2007-24473githubgithub.com/xbufu/CVE-2007-24472githubgithub.com/SeifEldienAhmad/Penetration-Testing-on-Metasploitable21githubgithub.com/JoseBarrios/CVE-2007-24471githubgithub.com/3x1t1um/CVE-2007-24471githubgithub.com/ozuma/CVE-2007-24471githubgithub.com/s4msec/CVE-2007-24471githubgithub.com/Aviksaikat/CVE-2007-24471githubgithub.com/abdulsaabir/CVE-2007-24471githubgithub.com/0xKn/CVE-2007-24470githubgithub.com/Nosferatuvjr/Samba-Usermap-exploit0githubgithub.com/testaross4/CVE-2007-24470githubgithub.com/b33m0x00/CVE-2007-24470githubgithub.com/HerculesRD/PyUsernameMapScriptRCE0githubgithub.com/DesmondHinds94/S22_The_Verification_Protocol0githubgithub.com/WildfootW/CVE-2007-2447_Samba_3.0.25rc30githubgithub.com/bdunlap9/CVE-2007-2447_python0githubgithub.com/MikeRega7/CVE-2007-2447-RCE0githubgithub.com/ShivamDey/Samba-CVE-2007-2447-Exploit0githubgithub.com/Juantos/cve-2007-24470githubgithub.com/IamLucif3r/CVE-2007-2447-Exploit0githubgithub.com/foudadev/CVE-2007-24470githubgithub.com/elphon/CVE-2007-2447-Exploit0githubgithub.com/DevinLiggins14/SMB-PenTest-Exploiting-CVE-2007-2447-on-Metasploitable-20githubgithub.com/MrRoma577/exploit_cve-2007-2447_again0githubgithub.com/nika0x38/CVE-2007-24470githubgithub.com/xlcc4096/exploit-CVE-2007-24470githubgithub.com/nulltrace1336/Samba-Exploit-CVE-2007-24470githubgithub.com/b1fair/smb_usermap0githubgithub.com/vig9610/Exploiting-Samba-on-Metasploitable-20githubgithub.com/r3vpwnx/CVE-2007-24470githubgithub.com/Daviddoctor/Samba-CVE-2007-2447-Exploit-Username-Map-Script0githubgithub.com/Youneskc/SMB-Penetration-Testing-NTLM-Relay-Version-2-0githubgithub.com/harshiys/cybersecurity-home-lab-btp0githubgithub.com/G01d3nW01f/CVE-2007-24470githubgithub.com/3t4n/samba-3.0.24-CVE-2007-2447-vunerable-0exploitdbwww.exploit-db.com/exploits/16320unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.