Is SnakeOS affected by the Samba exploit CVE-2017-7494 that has existed since 2010?
87 views
Skip to first unread message
Thirsty
May 28, 2017, 6:58:19 AM5/28/17
to DealExtreme NAS SnakeOS
Coming hot on the heels of the WannaCry SMB bug, news of the bug that has affected Samba since 2010 is cause for alarm, especially as a lot of these systems are used for NAS servers.
See https://www.samba.org/samba/security/CVE-2017-7494.html and https://community.rapid7.com/community/infosec/blog/2017/05/25/patching-cve-2017-7494-in-samba-it-s-the-circle-of-life for a detailed description of the bug and exploit.
Two questions:
1: Is the latest release of SnakeOS affected by this bug?
2: If so, how difficult is it to apply a permanent patch?
See https://www.samba.org/samba/security/CVE-2017-7494.html and https://community.rapid7.com/community/infosec/blog/2017/05/25/patching-cve-2017-7494-in-samba-it-s-the-circle-of-life for a detailed description of the bug and exploit.
Two questions:
1: Is the latest release of SnakeOS affected by this bug?
2: If so, how difficult is it to apply a permanent patch?
Reply all
Reply to author
Forward
0 new messages