1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

18-year-old SMB vulnerability resurfaces, dozens of vendors affected

Discussion in 'CSO' started by RSS, Apr 13, 2015.

  1. RSS

    RSS New Member Member

    SPEAR, the research team at Cylance, has discovered new attack vectors for an 18-year-old vulnerability in Windows Server Message Block (SMB). The updated attack vector, called Redirect to SMB, impacts products from Microsoft, Apple, Adobe, Symantec, Box, Oracle, and more.

    In 1997, Aaron Spangler discovered a bug in Internet Explorer that allowed attackers to steal credentials by exploiting a feature in the SMB protocol.

    SMB is a core component in Windows networking, and enabled by default in all versions of the Windows OS.

    Microsoft provided workarounds and difficult-to-implement GPO options after the flaw was initially disclosed, but never fully addressed the underlying problem. As things stand now, unless default settings in Windows are changed, systems remain vulnerable to these types of attack.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page