September 8th, 2009, 01:53 PM
SMB 0-day - Windows Vista / 2008 / 7
We have received a report from Tyler that a vulnerability affecting Microsoft SMB2 can be remotely crashed with proof-of-concept code that has been published yesterday and a Metasploit module is out.
We have confirmed it affects Windows 7/Vista/Server 2008. The exploit needs no authentication, only file sharing enabled with one 1 packet to create a BSOD. We recommend filtering access to port TCP 445 with a firewall.
Windows 2000/XP are NOT affected by this exploit.
I haven't put ** ** for greater attention required, since SMB (445) should be filtered on the firewall.
CISSP, CISM, CISA, SSCP
*Thank you GOD*
Greater the Difficulty, SWEETER the Victory.
Believe in yourself.
By Irongeek in forum The Security Tutorials Forum
Last Post: September 12th, 2006, 06:17 AM
By Cider in forum Operating Systems
Last Post: March 21st, 2006, 08:30 PM
By gore in forum Other Tutorials Forum
Last Post: October 5th, 2004, 08:26 AM
By warl0ck7 in forum Microsoft Security Discussions
Last Post: August 14th, 2003, 12:23 PM
By Remote_Access_ in forum Security Archives
Last Post: January 12th, 2002, 02:02 AM