Mar 21, 2011

Samba misconfigured




Description: Ok so the remote system runs samba , also accepts anonymous logins
Samba exports some paths to the anonymous user that will allow reading
and writing
On the remote system there is a crontab that runs some scripts located
in /usr/local/bin with root privileges
The anonymous...read more user have also the privilege to modify this scripts
connecting to samba
The cron will run this scripts any minute and every day no mather what
the scripts contain
The anonymous user can force this scripts to run some services or to
dump /etc/shadow to another file that can be downloanded using samba

No comments:

Post a Comment