ArchLinux: 201705-22: samba: arbitrary code execution
Summary
All versions of Samba from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
Resolution
Upgrade to 4.5.10-1.
# pacman -Syu "samba>=4.5.10-1"
The problem has been fixed upstream in version 4.5.10.
References
https://www.samba.org/samba/security/CVE-2017-7494.html https://security.archlinux.org/CVE-2017-7494
Workaround
Add the parameter: nt pipe support = no
to the [global] section of your smb.conf and restart smbd. This prevents clients from accessing any named pipe endpoints. Note that this can disable some expected functionality for Windows clients.