18-year-old Windows bug allows attackers to harvest credentials


  1. Posts : 39,789
    Win 7 32, Win 7 64 Pro, Win 8.1 64 Pro, Win 10 64 Education Edition, Win 11 Pro
       #1

    18-year-old Windows bug allows attackers to harvest credentials


    This week, security researchers at Cylance disclosed a vulnerability in Server Message Block (SMB) that allows attackers to harvest user credentials from any Windows computer, server, or tablet, including those running the Windows 10 Technology Preview.

    The attack is relatively trivial to execute, requiring the user to input a malicious "file://" URL, click a similarly malicious link, or use any program that could automatically attempt to load such a link, such as generating a thumbnail for a linked image on a maliciously-coded page. Accessing this link leads to an authentication attempt by Windows. When combined with a man-in-the-middle attack, this exploit can be used to capture user credentials.
    When a fix will be available

    If you do not have a need for SMB functionality, your best bet is to block outbound traffic on TCP 139 and 445 in your firewall. If you do and are waiting on an official fix from Microsoft, prepare to be disappointed.

    18-year-old Windows bug allows attackers to harvest credentials - TechRepublic
      My Computer


  2. Posts : 696
    Windows 10 Build 14267
       #2

    18 year !!!

    It's a legal age bug... lol...

    :)
      My Computer


  3. Posts : 1,778
    Windows 10 Pro,
       #3

    Barely legal.
      My Computer


  4. Posts : 27,166
    Win11 Pro, Win10 Pro N, Win10 Home, Windows 8.1 Pro, Ubuntu
       #4

    Sorry in my book if it can't by beer, it's not of age
      My Computers


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 06:36.
Find Us




Windows 10 Forums