Malicious clients can upload and cause the smbd server to execute a shared library from a writable share.

https://www.samba.org/samba/security/CVE-2017-7494.html