It's weird to find out with a single SMB (ver 2.0) packet you can cause BSOD on Vista & windows 2008 fully patched...
But probably it's kinda weirder that these days, the guy who found it published the entire POC (probably at the same day he contacted M$).
cool & but very DANGEROUS.
I think nowadays it's pretty much agreed that full disclosure is OK after vendor is informed in timely manner - other wise it would cause more damage...
In case you need to disable SMB 2.0
secunia advisory
No comments:
Post a Comment