Vulnerability with CVE-2017-7494 allows the attacker to upload a dynamic malicious code library to a server or PC with a secure Samba file sharing and to ensure it runs. On multiple platforms it can be with root privileges and thus gaining full control over the computer.
https://www.samba.org/samba/security/CVE-2017-7494.html
However, Samba’s announcement last night is rather brief and detailed explanation of the circumstances is lacking.
Of course, the developers released edited versions 4.6.4, 4.5.10 and 4.4.14 for supported versions, patches available for others. The main recommendation is to install repaired versions, with obviously released versions already available to individual Linux distributions.
The vulnerability, similar to the vulnerability in Windows used by WannaCry worm, has the potential to create a worm when the user’s interaction is not exploited and the infected computer can also attack other computers.
Is Turris omnia safe?
sry for my eng