Thursday, October 08, 2009

Static Binary Analysis of Recent SMBv2 Vulnerability

The recent SMBv2 vulnerability (CVE-2009-3103) in Microsoft Windows has gotten a lot of attention in the past few weeks. We decided that given the publicity and nature of the vulnerability, it would be interesting to post a threat analysis. With the release of Stephen Fewer's Metasploit module to exploit this vulnerability, technical details of the vulnerability are now publicly available.


1 comment:

Anonymous said...

Can anyone recommend the well-priced Network Monitoring program for a small IT service company like mine? Does anyone use or How do they compare to these guys I found recently: N-able N-central desktop support
? What is your best take in cost vs performance among those three? I need a good advice please... Thanks in advance!