Full title: Samba is_known_pipename() Arbitrary Module Load Exploit 
Category: remote exploits
Platform: windows
This Metasploit module triggers an arbitrary shared library load vulnerability in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This Metasploit module requires valid credentials, a writeable folder in an accessible share, and knowledge of the server-side path of the writeable folder. In some cases, anonymous access combined with common filesystem locations can be used to automatically exploit this vulnerability.

# 0day.today @ http://0day.today/