By: Joakim Andersson

Joakim Andersson — Wed, 09 Sep 2009 06:59:01 +0000

It is indeed frightening how this can get through their testning. If you write new TCP/IP and SMB2 stacks I think it would be natural to set up unit tests that run all known old exploits against the new code.

Apparently they didn't do that!

By: Daniel H

Daniel H — Tue, 08 Sep 2009 21:43:43 +0000

I remember very very long ago sitting with backorifice of COTDC fame. I was more than surprised a simple exploit like this could make it past any modern Q&A, let alone with newer stuff like fuzzying and unit testing instead of tedious manual testing.

This hack is sadly even easier to use than teardrop. Since SMB2 travels subnets perfectly its much easier for a script-kiddie, disgruntled employee, virus or student to wreac havoc in a whole corporation at once.

Oh, it affects 2008 Server just as well, only demand is an SMB share wich pretty much covers it all.

Comments on: Windows 7 Reintroduces Remote BSoD

By: Joakim Andersson

By: Daniel H