Is this not a one big "Well Duh"?
If you are not blocking 445 then... you have more problems than this one...
From SANS -
"We have received a report from Tyler that a vulnerability affecting Microsoft SMB2 can be remotely crashed with proof-of-concept code that has been published yesterday and a Metasploit module is out.
We have confirmed it affects Windows 7/Vista/Server 2008. The exploit needs no authentication, only file sharing enabled with one 1 packet to create a BSOD. We recommend filtering access to port TCP 445 with a firewall.
Windows 2000/XP are NOT affected by this exploit."
skip to main |
skip to sidebar
Information Security News and Comments
Search
Old Stuff
-
▼
2009
(64)
-
▼
September
(15)
- Crooks, Trojans & Mules
- OWASP Podcast Series #41
- A Stick Figure Guide to the Advanced Encryption St...
- Man sues BofA for "1,784 billion, trillion dollars"
- Friday Fun with the DataLoss database
- Couple's Lawsuit Against Bank Over Breach To Move ...
- What Star Trek Predicts About The Future of Inform...
- ShmooCon 2010 - Registration
- Don't Copy That 2 (Official Sequel to Don't Copy T...
- Cyber War Gets Its Own Museum Show
- Vista/2008/Windows 7 SMB2 BSD 0Day
- Free Book
- Have Skimmer, will Travel
- Weaponizing the Web from DEFCON
- Happy Birthday INET
-
▼
September
(15)
Labels
- Friday Fun (69)
- Home Security (6)
- In the News (2)
- Secure Future (5)
- ShmooCon (13)
- Spy (4)
- Tool Time (19)
Translate e2e
Support the EFF
0 comments:
Post a Comment