SMB 0-day - Windows Vista / 2008 / 7
Results 1 to 4 of 4

Thread: SMB 0-day - Windows Vista / 2008 / 7

  1. #1
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003

    SMB 0-day - Windows Vista / 2008 / 7

    From ISC:


    We have received a report from Tyler that a vulnerability affecting Microsoft SMB2 can be remotely crashed with proof-of-concept code that has been published yesterday and a Metasploit module is out.

    We have confirmed it affects Windows 7/Vista/Server 2008. The exploit needs no authentication, only file sharing enabled with one 1 packet to create a BSOD. We recommend filtering access to port TCP 445 with a firewall.
    and interestingly,



    Windows 2000/XP are NOT affected by this exploit.

    I haven't put ** ** for greater attention required, since SMB (445) should be filtered on the firewall.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  2. #2
    Super Moderator
    Know-it-All Master Beaver

    Join Date
    Jan 2003
    Posts
    3,914
    Awwww, you mentioned my name Although I like it better when they mention my last name as well.

    Windows 7 RTM isn't actually affected, only Windows 7 RC is affected.

    Also it looks like it's now being called remote code execution rather than just DoS.
    IT Blog: .:Computer Defense:.
    PnCHd (Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".

  3. #3
    Banned
    Join Date
    Jan 2008
    Posts
    605
    Personally, I don't want my name on anything with the exceptions of what little assets and finacials I have. I would rather be a Max Headroom like figure on everyone's screens.

  4. #4
    Junior Member
    Join Date
    Mar 2003
    Posts
    12
    Remote code execution PoC has been released on metasploit

    http://trac.metasploit.com/browser/f..._func_index.rb
    silent play in the shadow of power...

Similar Threads

  1. Cracking Windows Vista Beta 2 Local Passwords (SAM and SYSKEY)
    By Irongeek in forum The Security Tutorials Forum
    Replies: 2
    Last Post: September 12th, 2006, 07:17 AM
  2. Copying updates
    By Cider in forum Operating Systems
    Replies: 10
    Last Post: March 21st, 2006, 09:30 PM
  3. Replies: 6
    Last Post: October 5th, 2004, 09:26 AM
  4. Windows 2003 Server Vulnerability
    By warl0ck7 in forum Microsoft Security Discussions
    Replies: 7
    Last Post: August 14th, 2003, 01:23 PM
  5. OS History and other info.
    By Remote_Access_ in forum Security Archives
    Replies: 9
    Last Post: January 12th, 2002, 03:02 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •