Is OmniCenter vulnerable to the SambaCry exploit?

Short Answer

OmniCenter does not expose any writable file shares, and therefore IS NOT, and HAS NEVER BEEN, vulnerable to this exploit.

In May 2017, Samba.org announced the existence of CVE-2017-7494) (also known as the SambaCry bug), which is a serious vulnerability in the Samba open-source file sharing SMB library. This weakness allows a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.

OmniCenter uses the Samba libraries for SMB file sharing. However, OmniCenter does not expose any writable file shares, and therefore is not, and has never been, vulnerable to this exploit.

As a precaution, Netreo has implemented several workarounds and patches in OmniCenter 9.1 and 10 to insure this vulnerability could never be exploited in the future.

If you have any concerns, please feel free to contact Netreo Support.