- Joined
- Jul 19, 2017
- Messages
- 11
- Reaction score
- 3
I'm sure by now most of you have heard of the latest SMB vulnerability from Microsoft dub as SMBLoris. According to some articles I have came across all versions from Windows 2000 to Window 10 are vulnerable EVEN IF SMB (1,2 & 3) ARE DISABLED.
Basically any systems exposing port 445 are vulnerable (and assuming ports 137-139 as well). SMBLoris is a denial of service attack. If the attack is successful, the system being attacked will need to be rebooted and will still be vulnerable
This new exploit is not ransomware or like any of the recent attacks on the SMB protocol.
Well that's sort of comforting to know.
You can read a more in-depth report here
Basically any systems exposing port 445 are vulnerable (and assuming ports 137-139 as well). SMBLoris is a denial of service attack. If the attack is successful, the system being attacked will need to be rebooted and will still be vulnerable
This new exploit is not ransomware or like any of the recent attacks on the SMB protocol.
Well that's sort of comforting to know.
You can read a more in-depth report here