Years of vulnerability detection can affect all Windows users

Source: Internet
Author: User

Years of vulnerability detection can affect all Windows users

Cylance's information security expert works with CERT research teams at Carnegie Mellon University and claims to have discovered a botnet vulnerability that affects all Windows versions for a long time. It is also included in the latest Windows 10 technology preview version. The botnet vulnerability was derived from the vulnerability discovered by Aaron Spangler in 1997, known as "Redirect to SMB" (redirected to SMB protocol) attackers can hijack sensitive user information, and the entire attack process can be completed by clicking a link.

Cylance also indicates that the vulnerability can also be exploited by any Windows application through man-in-the-middle attacks. The team identified 31 applications that were exposed to this security risk, including Adobe Reader, QuickTime, Norton Security Scan, WMP player, and IE 11. Microsoft has not stated whether to release an official patch to fix the vulnerability once. After all, the vulnerability has been around for 18 years.

This article permanently updates the link address:

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.