Tag Archives: Network

CallStranger UPnP bug allows data theft, DDoS etc.

[German]Currently, billions of devices are at risk from a bug if UPnP is used there. The vulnerability, called CallStranger, allows for data extraction, denial of service (DDoS) attacks, and internal network scanning. Advertising

Posted in devices, Security, Software | Tagged , , | Leave a comment

Advertising

Windows 10: SMBleed vulnerability in SMBv3 protocol

[German]Another critical vulnerability has been discovered in the Server Message Block 3.1.1 (SMBv3) protocol of Windows 10/Server Core, which allows access to the kernel memory. But there are patches and mitigations available. Advertising

Posted in Security, Windows | Tagged , , , , , , | Leave a comment

News about the Windows SMBv3 vulnerability SMBGhost

[German]A brief update to the SMBGhost vulnerability CVE-2020-0796 in the SMBv3 protocol in Windows 10 version 190x and Windows Server 2019, although Microsoft has released an update to close the vulnerability. However, this update causes installation errors on some systems. … Continue reading

Posted in Security, Windows | Tagged , , , , , | Leave a comment

A Scanner for Windows SMBv3 Vulnerability CVE-2020-0796

[German]A short tip note for administrators on enterprise networks who want to verify that Windows servers are vulnerable to the unpatched SMBv3 vulnerability CVE-2020-0796. There is a Pyton script for this purpose. Advertising

Posted in Security, Windows | Tagged , , , | Leave a comment

Windows SMBv3 0-day vulnerability CVE-2020-0796

[German]There is a serious but unpatched vulnerability in the SMBv3 network protocol in Windows. This could allow the spread of worms, but is not currently exploited. Microsoft provided the information in a security advisory yesterday. Advertising

Posted in Security, Windows | Tagged , , , | 2 Comments

Advertising

Microsoft recommends disabling SMBv1 on Exchange

[German]Microsoft recommends that administrators of Exchange Servers disable the SMBv1 protocol on these machines for security reasons. Here are a few details about that recommendation. Advertising

Posted in Security, Software, Windows | Tagged , , , | Leave a comment

Confidence in SD-WAN Shaken by Digital Transformation

Advertising SD-WAN is set for strong growth in 2020 – as buyers migrate from MPLS to a more agile and affordable alternative. Survey findings from Cato Networks suggest focusing on SD-WAN for MPLS replacement and failing to fully consider digital … Continue reading

Posted in General, Software | Tagged , , | Leave a comment

PoC for Citrix ADC/Netscaler vulnerability CVE-2019-19781

[German]There is an unpatched vulnerability CVE-2019-19781 in Citrix ADC (Application Delivery Controller, formerly Netscaler) and proof of concept (PoC) exploits have been available for a few days to exploit the vulnerability – and honeypots are already under attack. I got … Continue reading

Posted in devices, Security, Software | Tagged , , , | Leave a comment
Advertising

Fix for issues on Windows share from macOS

[German]Since Microsoft released update KB4503276 of June 2019, users of macOS have had problems accessing shares on Windows machines (clients and servers). SMB1 and LTLM are causing problems. Apple has now published a KB article on this topic. Advertising

Posted in issue, Windows | Tagged , , , | Leave a comment

Assign network level authentication w/o Group Policies

[German]How to assure, that authentication at network level is on in Windows, if no Group Policies are available (for instance in all Windows Home editions)? Here is a short advise. Advertising

Posted in Security, Windows | Tagged , , | Leave a comment