-
Title
Kace SMA Response to SambaCry vulnerability (CVE-2017-7494) -
Description
The Kace SMA (Systems Management Appliance) has the ability to track, secure, and update desktop/server endpoints. It also provides Service Desk and Asset Management features. Kace SMA utilizes Samba for agent provisioning as well as the import/export of various files for features including Scripting, Managed Installs, and Helpdesk.
Recently, information has been released on a Samba vulnerability (CVE-2017-7494) referenced as SambaCry. More information about the vulnerability can be found below:
-
Resolution
With this vulnerability, it is important to note that valid credentials to a writable share are required for a successful attack. It is recommended that your Samba have a strong and unique password to limit success of any exploits.
A fix for this vulnerability is planned for the future release of the Kace SMA. If desired, Samba access can be turned off completely from the webui.
To disable the Samba share, please follow these steps:
- Navigate to Settings | Control Panel | Security Settings
- Under "Samba", uncheck "Enable File Sharing"
- Click Save and Restart Services
-
Defect ID
ESMP-5174