Samba vulnerability CVE-2017-7494

[Bill Mayhew]

For fhose of you who recently have been trapped on a desert island with no access to news, there is a recently discovered eaxily exploitable vulnerability in Samba that affects versions at least as far back as ver. 3.5.

The lagest risk is probably from within your organization's LAN.  Hopefully you have a border firewall that denies access to port 445 by default, but you probably have to give access to legitimate users on your own network, so the possibility for a LAN worm similar to Wannacry exists.

The good news is that patches are available.

https://arstechnica.com/security/2017/05/a-wormable-code-execution-bug-has-lurked-in-samba-for-7-years-patch-now/