### [CVE-2007-2447](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)

### Description

The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands via shell metacharacters involving the (1) SamrChangePassword function, when the "username map script" smb.conf option is enabled, and allows remote authenticated users to execute commands via shell metacharacters involving other MS-RPC functions in the (2) remote printer and (3) file share management.

### POC

#### Reference
- http://securityreason.com/securityalert/2700
- http://www.novell.com/linux/security/advisories/2007_14_sr.html

#### Github
- https://github.com/0xConstant/CVE-2007-2447
- https://github.com/0xConstant/ExploitDevJourney
- https://github.com/0xKn/CVE-2007-2447
- https://github.com/0xTabun/CVE-2007-2447
- https://github.com/0xkasra/CVE-2007-2447
- https://github.com/0xkasra/ExploitDevJourney
- https://github.com/0xwh1pl4sh/CVE-2007-2447
- https://github.com/3t4n/samba-3.0.24-CVE-2007-2447-vunerable-
- https://github.com/3x1t1um/CVE-2007-2447
- https://github.com/4n0nym0u5dk/usermap_script_CVE-2007-2447
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Alien0ne/CVE-2007-2447
- https://github.com/Aman0003sarkar/Network-Penetration-Testing-with-Real-World-Exploits-and-Security-Remediation
- https://github.com/Anekant-Singhai/Exploits
- https://github.com/AveryVaughn/forCVE
- https://github.com/Aviksaikat/CVE-2007-2447
- https://github.com/Avinash-05-web/CHE-project-4th-sem
- https://github.com/BrunoCRovira/LameHTB
- https://github.com/C4ort26/CyberSecurity-portfolio-
- https://github.com/CVEDB/PoC-List
- https://github.com/CVEDB/awesome-cve-repo
- https://github.com/CYB3RLEO/Penenetration_Testing_Lab_Exploitation_Phase3-Metasploitable3-samba_user_map-
- https://github.com/CYB3RLEO/Penetration_Test_Report_Metasploitable2
- https://github.com/CipherLucas/Metasploitable2-PenTest-Report
- https://github.com/Desm0ndChan/OSCP-cheatsheet
- https://github.com/DevinLiggins14/SMB-PenTest-Exploiting-CVE-2007-2447-on-Metasploitable-2
- https://github.com/Divakar12p/divakar-manda
- https://github.com/DmitriyPetrovskiy23/InfoSec-homework1
- https://github.com/Furious992/HW13-01
- https://github.com/G01d3nW01f/CVE-2007-2447
- https://github.com/GaloisInc/msf-haskell
- https://github.com/H3xL00m/CVE-2007-2447
- https://github.com/HariprasadG92/Metasploitable2-Penetration-Test
- https://github.com/HerculesRD/PyUsernameMapScriptRCE
- https://github.com/IamLucif3r/CVE-2007-2447-Exploit
- https://github.com/JoseBarrios/CVE-2007-2447
- https://github.com/Juantos/cve-2007-2447
- https://github.com/Ki11i0n4ir3/CVE-2007-2447
- https://github.com/Ki11i0n4ir3/Sambaster
- https://github.com/Kr1tz3x3/HTB-Writeups
- https://github.com/Lab2RKSB/PraktikHack
- https://github.com/LyticOnaope/Penetration-Testing-
- https://github.com/Madhan150320/metasploit-practice-lab
- https://github.com/MikeRega7/CVE-2007-2447-RCE
- https://github.com/MohamedSayed47/DEPI_Final_project
- https://github.com/MrRoma577/exploit_cve-2007-2447_again
- https://github.com/N3rdyN3xus/CVE-2007-2447
- https://github.com/Neoju5t/expo-att
- https://github.com/Nkemjika-123/Cybersecurity-Governance-Framework
- https://github.com/Nosferatuvjr/Samba-Usermap-exploit
- https://github.com/NyxByt3/CVE-2007-2447
- https://github.com/Patrick122333/4240project
- https://github.com/Pritt014/metasploitable2-pentest
- https://github.com/PuddinCat/GithubRepoSpider
- https://github.com/Raja-jpeg/Ethical-Hacking-Lab
- https://github.com/RedTeamShanks/Local-Network-Vulnerability-Assessment
- https://github.com/Rohan1630/Internal_Pentest_Lab
- https://github.com/SERMSN/vulnerabilities-attacks
- https://github.com/SMSravya/LocalPortScanner
- https://github.com/SamHackingArticles/CVE-2007-2447
- https://github.com/SanjuCyb3r/Metasploitable-2
- https://github.com/SeifEldienAhmad/Penetration-Testing-on-Metasploitable2
- https://github.com/ShivamDey/Samba-CVE-2007-2447-Exploit
- https://github.com/Sp3c73rSh4d0w/CVE-2007-2447
- https://github.com/Takarigua/sys-pattern-homework13-01
- https://github.com/Tamie13/Penetration-Testing-Week-16
- https://github.com/TopekoX/belajar-ethical-hacking
- https://github.com/Unix13/metasploitable2
- https://github.com/WildfootW/CVE-2007-2447_Samba_3.0.25rc3
- https://github.com/Y2FuZXBh/exploits
- https://github.com/Ziemni/CVE-2007-2447-in-Python
- https://github.com/aadithya-vimal/Metasploitable2-Pentest
- https://github.com/aaroong/metasploitable2-writeup-aaroong
- https://github.com/amriunix/CVE-2007-2447
- https://github.com/ankit-kumar-developer-122/Test
- https://github.com/anneelv/htb-lame
- https://github.com/aparnaa19/CVE-Exploits-on-Metasploitable2
- https://github.com/awakehns/defence-and-attack_13-01
- https://github.com/b1fair/smb_usermap
- https://github.com/b33m0x00/CVE-2007-2447
- https://github.com/b3m0x00/CVE-2007-2447
- https://github.com/banomaly/CVE-2007-2447
- https://github.com/banomaly/ExploitDevJourney
- https://github.com/basimnawaz6/Metasploitable2
- https://github.com/bdunlap9/CVE-2007-2447_python
- https://github.com/beyioku/vulnerability-assessment-lab
- https://github.com/bongguy09/Simulating-Real-World-Network-Exploitation-and-Defenses
- https://github.com/bsbsmaster/OSCP-Cheat-Sheet
- https://github.com/c0d3cr4f73r/CVE-2007-2447
- https://github.com/cherrera0001/CVE-2007-2447
- https://github.com/codeN0mad/Vulnerability-assessment-uneeq-internship-
- https://github.com/crypticdante/CVE-2007-2447
- https://github.com/doval2222/doval2222
- https://github.com/doval2222/scripts-ciberseguridad
- https://github.com/elphon/CVE-2007-2447-Exploit
- https://github.com/foudadev/CVE-2007-2447
- https://github.com/gwyomarch/Lame-HTB-Writeup-FR
- https://github.com/h3x0v3rl0rd/CVE-2007-2447
- https://github.com/h3xcr4ck3r/CVE-2007-2447
- https://github.com/hussien-almalki/Hack_lame
- https://github.com/jaydenxjayden/HTB-writeup
- https://github.com/jwardsmith/Penetration-Testing
- https://github.com/k4u5h41/CVE-2007-2447
- https://github.com/macosta-42/Exploit-Development
- https://github.com/marcocastro100/Intrusion_Detection_System-Python
- https://github.com/mariannorasg/metasploitable2-pentesting-lab
- https://github.com/mjay2992/Vulnerability-Exploitation-Project
- https://github.com/mmezirard/cve-2007-2447
- https://github.com/mr-l0n3lly/CVE-2007-2447
- https://github.com/mylovemyon/memo
- https://github.com/n0-traces/cve_monitor
- https://github.com/n3masyst/n3masyst
- https://github.com/n3ov4n1sh/CVE-2007-2447
- https://github.com/n3rdh4x0r/CVE-2007-2447
- https://github.com/nickvourd/smb-usermap-destroyer
- https://github.com/nika0x38/CVE-2007-2447
- https://github.com/noahmtubbs/Cybersecurity-HomeLab
- https://github.com/oscar-rk/CTF-Writeups
- https://github.com/oscar-rk/exploits
- https://github.com/ozuma/CVE-2007-2447
- https://github.com/pedr0alencar/vlab-metasploitable2
- https://github.com/pulkit-mital/samba-usermap-script
- https://github.com/pwnd-root/exploits-and-stuff
- https://github.com/raes3401/-HackTheBox-and-CTF-notes
- https://github.com/rahulkore1/-basic-vulnerability-assessment
- https://github.com/s4msec/CVE-2007-2447
- https://github.com/saralagrace/pentest
- https://github.com/seerat-fatima21/Self-directed-Labs
- https://github.com/seerat-fatima21/samba-exploitation
- https://github.com/shadow-here/Ethical-Hacking-Project
- https://github.com/skeeperloyaltie/network
- https://github.com/tarikemal/exploit-ftp-samba
- https://github.com/testaross4/CVE-2007-2447
- https://github.com/tourvan/penetration-testing-report
- https://github.com/un4gi/CVE-2007-2447
- https://github.com/vasev85/exploit
- https://github.com/vonoid/attacks-on-IS
- https://github.com/voukatas/PenTest_Metasploitable2
- https://github.com/xbufu/CVE-2007-2447
- https://github.com/xlcc4096/exploit-CVE-2007-2447
- https://github.com/ygbull/Capstone
- https://github.com/yukitsukai47/PenetrationTesting_cheatsheet
- https://github.com/zhanpengliu-tencent/medium-cve