CVE-2021-31800

Name of the Vulnerable Software and Affected Versions Impacket versions 0.9.22 and earlier

Description The issue is related to multiple path traversal vulnerabilities in the smbserver.py component of Impacket. An attacker connecting to a running smbserver instance can exploit these vulnerabilities to list and write to arbitrary files via ../ directory traversal. This could potentially lead to arbitrary code execution by replacing sensitive files such as /etc/shadow or an SSH authorized key. The vulnerability can be exploited by a remote attacker to access confidential data, compromise data integrity, and cause a denial of service.

Recommendations For Impacket versions 0.9.22 and earlier, update to version 0.9.23 or later to resolve the issue. As a temporary workaround, consider restricting access to the smbserver instance to minimize the risk of exploitation. Avoid using the smbserver.py component until the issue is resolved.