|
Family: Windows : Microsoft Bulletins --> Category: infos
Flaw in SMB Signing Could Enable Group Policy to be Modified (329170) Vulnerability Scan
Vulnerability Scan Summary Checks for MS Hotfix 329170
Detailed Explanation for this Vulnerability Test
Synopsis :
It is possible to send unsigned SMB packets.
Description :
The remote version of Windows contains a flaw in the SMB signing
implementation. SMB signing is used to sign each packets sent
between a client and a server to protect them against man in the
middle attacks.
If the Domain policy is configured to force usage of SMB signing
it is possible for a possible hacker to downgrade the communication to
disable SMB signing and try to launch man in the middle attacks.
Solution :
Microsoft has released a set of patches for Windows XP and 2000 :
http://www.microsoft.com/technet/security/bulletin/ms02-070.mspx
Threat Level:
Medium / CVSS Base Score : 6
(AV:R/AC:H/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|