T-024: Vulnerability in Server Message Block (SMB)

Tags

block, security, server

Special Forums Cybersecurity Security Advisories (RSS) T-024: Vulnerability in Server Message Block (SMB)

11-13-2008

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

T-024: Vulnerability in Server Message Block (SMB)

A remote code execution vulnerability exists in the way that Microsoft Server Message Block (SMB) Protocol handles NTLM credentials when a user connects to an attacker's SMB server. This vulnerability allows an attacker to replay the user's credentials back to them and execute code in the context of the logged-on user. The risk is MEDIUM. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Solaris

Cannot login to SMB Server/Authentication denied

Hello, I have problems seting up SMB server in Solaris 11.3. I had SMB working previously on Solaris 11 (updated to 11.3), but a bad harddisk crash forced me to install Solaris again from scratch and I cannot get it working properly. I have imported the previous zfs pool with share.smb set...

2. Solaris

/network/smb/server goes into maintenance mode.

All I'm running an OpenSolaris system (Nexenta). When doing a svcs I see that/network/smb/server is in maintenance mode. I have run a clear on the service and restarted. I see the same service show online* for a bit but then, enters maintenance every time. In the service log I...

LEARN ABOUT MOJAVE

smbd

smbd(8) 						    BSD System Manager's Manual 						   smbd(8)

NAME

     smbd -- SMB server daemon

SYNOPSIS

     smbd [options]

DESCRIPTION

     smbd runs on a server machine to service SMB protocol requests from SMB client machines.

OPTIONS

     -debug   The service will log extensive debug information and may perform extra diagnostic checks. In debug mode, smbd will not exit when
	      idle.

     -help    Prints a usage message and exits.

     -ports list
	      The service will listen on each of the TCP ports specified in the comma-separated list. This option is typically only used for
	      debugging, since smbd is normally launched by launchd(8) on port 445.

     -stdout  Causes smbd to print log messages to standard output instead of the system log.

     -no-symlinks
	      In normal operation, smbd will respond to client symlink requests but will never follow symlinks itself. This flag causes smbd to
	      restrict client access to symlink operations and to always follow symlinks. In this case, clients will not be aware that symlinks
	      are in use because they will always be directed to the symlink target.

FILES

     /Library/Preferences/SystemConfiguration/com.apple.smb.server.plist
	      The primary configuration for the SMB stack. This file is updated by various system services and should not be edited by hand.

     /System/Library/LaunchDaemons/com.apple.smbd.plist
	      The smbd service's property list file for launchd(8).

SIGNALS

     SIGHUP   This signal causes smbd to re-read its configuration settings.

SEE ALSO

     launchd(8)

STANDARDS

     The SMB protocol is documented as part of the Microsoft Work Group Server Protocol Program (WSPP) technical documentation set, specifically

     MS-CIFS  Common Internet File System Specification

     MS-SMB   Server Message Block (SMB) Protocol Specification

HISTORY

     The smbd utility first appeared in Mac OS 10.7.

Darwin								   June 1, 2019 							    Darwin

Security Advisories (RSS)