Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

New Redirect to SMB Flaw in all Windows versions including Windows 10 (shortened)
TechWorm ^ | on April 13, 2015 | Vijay

Posted on 04/13/2015 6:45:42 PM PDT by Utilizer

Security researchers at Cylance have discovered a serious vulnerability in all supported versions of Windows that can allow a potential hacker who has control of some portion of a victim’s network traffic to steal users’ credentials for valuable services.

Cylance researchers disclosed the vulnerability today on their website in which they said that their study is an extension to a similar research done by Aaron Spangler in 1997.

(Excerpt) Read more at techworm.net ...


TOPICS: Business/Economy; Computers/Internet
KEYWORDS: flaw; ms; security; windows; windowspinglist
Security flaw discovered in all current 'doze versions.

Seems to be a modification of a previous flaw but it potentially affects a great number of machines so it might bear looking at.

1 posted on 04/13/2015 6:45:42 PM PDT by Utilizer
[ Post Reply | Private Reply | View Replies]

To: Utilizer

Secondary reference article (similar info):

http://www.itnews.com.au/News/402688,windows-login-stealing-flaw-discovered-to-affect-all-versions.aspx


2 posted on 04/13/2015 6:47:00 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzlims trying to kill them)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer
Extra! Extra! Read all about it:

Software made for advertisers to stream crapola into and NSA to stream data out of computers found easy to hack

3 posted on 04/13/2015 6:48:43 PM PDT by who_would_fardels_bear
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

From iTnews:

“In the latest variation of the technique, Cylance said users could be hacked without even clicking on a link, if attackers intercept automated requests to log on to a remote server issued by applications running in the background of a typical Windows machine, for example to check for software updates.

“The attack takes advantage of features in Windows Server Message Block, commonly known as SMB. The new variation, discovered by Cylance researcher Brian Wallace, has so far only been recreated in a lab and has not been seen on computers in the outside world.

“Cylance said the flaw affected all versions of Windows - including the yet-to-be-released Windows 10 operating system - as well as software from at least 31 companies including Adobe, Apple, Box, Microsoft, Oracle and Symantec.


4 posted on 04/13/2015 6:54:16 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzlims trying to kill them)
[ Post Reply | Private Reply | To 1 | View Replies]

To: dayglored

Grist for your Ping list,


5 posted on 04/13/2015 7:06:13 PM PDT by Swordmaker (This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: All

Forgot to post entire title. Full:

“New Redirect to SMB Flaw in all Windows versions including Windows 10 allows hackers to steal login credentials”.


6 posted on 04/13/2015 7:20:07 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzlims trying to kill them)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

Reason №46 as why I don’t use SMB/Samba/NT folder sharing.


7 posted on 04/13/2015 7:59:49 PM PDT by __rvx86 (¡SI SE PUEDE! (Cruz 2016!))
[ Post Reply | Private Reply | To 1 | View Replies]

To: __rvx86

I’m sure you can get away with that in home network, but it’s not really an option on a large enterprise.


8 posted on 04/13/2015 8:08:59 PM PDT by miliantnutcase
[ Post Reply | Private Reply | To 7 | View Replies]

To: miliantnutcase

It’s not an option here either. I have found that I MUST run Samba and the NT services to share any ‘doze drives or partitions with the various flavours of OS’ I run here, and this particular one is not working too well at that.

Keeps insisting on a User Login and Password, but while it will accept the users I do have it simply seems to choke at the password and keep on demanding the identical information no matter what I do.

Bloody annoying.


9 posted on 04/13/2015 8:32:00 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzlims trying to kill them)
[ Post Reply | Private Reply | To 8 | View Replies]

To: Swordmaker; Abby4116; afraidfortherepublic; aft_lizard; AF_Blue; Alas Babylon!; amigatec; ...
Security flaw in SMB, affects all Windows versions plus other systems as well ... PING!

You can find all the Windows Ping list threads with FR search: search on keyword "windowspinglist".

Grateful hat tip to Swordmaker for the heads-up!

10 posted on 04/13/2015 9:10:29 PM PDT by dayglored (Listen, strange women lying in ponds distributing swords is...sounding pretty good about now.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Utilizer

SMB has historically been the source of many security holes.


11 posted on 04/13/2015 9:40:13 PM PDT by zeugma ( The Clintons Could Find a Loophole in a Stop Sign)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer; who_would_fardels_bear; Swordmaker; __rvx86; miliantnutcase; dayglored; zeugma

Ahhh, I love the smell of an SMB security thread in the middle of the night.


12 posted on 04/13/2015 9:45:33 PM PDT by PieterCasparzen (Do we then make void the law through faith? God forbid: yea, we establish the law.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: zeugma

Actually, I thought that title rightfully belonged to Java -and Flash, of course, and the various browsers that were critically dependent upon it/them.

However you could be right. :)


13 posted on 04/13/2015 10:03:19 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzlims trying to kill them)
[ Post Reply | Private Reply | To 11 | View Replies]

To: Utilizer

Some flaws are worse than others. When it comes down to it, the only truly secure computer is a standalone computer....Else it take lots of network slowing processes and eternal vigilance to protect and defend any network/computer.


14 posted on 04/14/2015 4:05:13 AM PDT by trebb (Where in the the hell has my country gone?)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer
The bug is so severe that it affects not only affects all of the current versions of Windows but software from at least 31 companies including Adobe, Apple, Box, Microsoft, Oracle and Symantec say the Cylance researchers.

Sorry to burst your bubble, Util, but this affects Apple as well.

The problem is already rectified in newer browsers such as Firefox and Chrome since any direct-to-SMB call is going to be followed up with a request for credentials since kernel mode access to the user hive is unique to IE.

Also remember that SMB is not unique to Windows insomuch as any other platform can use some variant of SMB (i.e. Samba). This is also not so much a vulnerability as a flaw. If you can scrub your egress points with a proxy or firewall to prevent outbound file:// calls, you're relatively safe. If, however, the attacker is inside your network and sets up something on a local webserver that can sniff the inbound authentication traps from users attempting to access compromised machine, then you're screwed anyway; first by the fact you have a rogue internal operator and then by the fact your websites have been compromised.

My guess on Microsoft's fix: do not address direct-to-SMB calls through a browser call. Note that this does NOT affect UNC pathing or access via mapped drive.

15 posted on 04/14/2015 4:27:25 AM PDT by rarestia (It's time to water the Tree of Liberty.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

Java and Flash, the bane of my existence. I no sooner get my domain updated with the latest Flash and Java and a new version has to be deployed.


16 posted on 04/14/2015 6:14:16 AM PDT by stylin_geek (Never underestimate the power of government to distort markets)
[ Post Reply | Private Reply | To 13 | View Replies]

To: Utilizer

Yeah, no real way around it. We ran into a funny issue where our Macs that were running Yosemite had glitchy issues connecting to a Samba 3 share on our SAN. Mavericks didn’t have the issue.


17 posted on 04/14/2015 7:22:29 AM PDT by miliantnutcase
[ Post Reply | Private Reply | To 9 | View Replies]

To: Utilizer
Actually, I thought that title rightfully belonged to Java -and Flash, of course, and the various browsers that were critically dependent upon it/them.

The fact that SMB has been broken pretty much since its introduction does not, in any way, let Java and Flash off the hook for their awful record. :-)

18 posted on 04/14/2015 9:27:32 AM PDT by zeugma ( The Clintons Could Find a Loophole in a Stop Sign)
[ Post Reply | Private Reply | To 13 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson