0-day SMB BSOD
It's weird to find out with a single SMB (ver 2.0) packet you can cause BSOD on Vista & windows 2008 fully patched...
But probably it's kinda weirder that these days, the guy who found it published the entire POC (probably at the same day he contacted M$).
cool & but very DANGEROUS.
I think nowadays it's pretty much agreed that full disclosure is OK after vendor is informed in timely manner - other wise it would cause more damage...
In case you need to disable SMB 2.0
secunia advisory
But probably it's kinda weirder that these days, the guy who found it published the entire POC (probably at the same day he contacted M$).
cool & but very DANGEROUS.
I think nowadays it's pretty much agreed that full disclosure is OK after vendor is informed in timely manner - other wise it would cause more damage...
In case you need to disable SMB 2.0
secunia advisory
Labels: security
posted by omarg at
12:33 PM
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home