Groups | Search | Server Info | Login | Register

Groups > comp.protocols.smb > #21

Is a system with ONLY a printer share vulnerable to CVE-2017-7494

Newsgroups comp.protocols.smb
Date 2017-10-06 07:32 -0700
Message-ID <43bf5cee-3e34-4c2e-b789-034d671414d4@googlegroups.com> (permalink)
Subject Is a system with ONLY a printer share vulnerable to CVE-2017-7494
From BMAC <msg4bmac@gmail.com>

Show all headers | View raw

Folks
Linux based Servers that Rapid7 has indicated has the CVE-2017-7494 vulnerability.  The system does NOT have any shared file folders. The only shared Samba service is shared printers. 

The server vendor indicates that since the Linux based servers ONLY has "shared printers" it is not vulnerable to CVE-2017-7494 and does not need to be patched.

The system is a contained print server that only the Print vendor has access to the OS.  We cannot access it in any way other then through the web portal or sending print jobs to the print shares.

Is the system still vulnerable to CVE-2017-7494?  Does the system still need to be patched to eliminate risk?

Thanks

Back to comp.protocols.smb | Previous | NextNext in thread | Find similar

Thread

Is a system with ONLY a printer share vulnerable to CVE-2017-7494 BMAC <msg4bmac@gmail.com> - 2017-10-06 07:32 -0700
  Re: Is a system with ONLY a printer share vulnerable to CVE-2017-7494 Lew Pitcher <lew.pitcher@digitalfreehold.ca> - 2017-10-06 13:48 -0400

csiph-web