Kitz Forum

Internet => General Internet => Topic started by: AArdvark on April 14, 2015, 11:45:04 PM

Title: FYI: Vulnerability Affecting All Versions of Windows + 30 S/W Vendors
Post by: AArdvark on April 14, 2015, 11:45:04 PM: Just read in SANS Newletter, may be of interest.

--Re-Direct to SMB Vulnerability Affects All Versions of Windows
(April 13, 2015)
A flaw affecting all versions of Windows as well as products from more
than 30 other software vendors allows attackers to steal encrypted login
data from Windows PC users. The vulnerability, known as Re-Direct to
SMB, could be used to launch a man-in-the-middle attack by tricking apps
into authenticating with a malicious server.
http://www.darkreading.com/endpoint/new-security-flaw-spans-all-versions-of-windows/d/d-id/1319884?
http://thehill.com/policy/cybersecurity/238620-your-windows-computer-has-a-flaw
http://www.forbes.com/sites/katevinton/2015/04/13/18-year-old-security-flaw-allows-hackers-to-steal-credentials-from-all-versions-of-windows/

CERT Vulnerability Note:
http://www.kb.cert.org/vuls/id/672268

SMF 2.0.19 | SMF © 2021, Simple Machines
Simple Audio Video Embedder | Terms and Policies