Zero-Day Exploit Exposed -- Redmondmag.com

Barney's Blog

Zero-Day Exploit Exposed

A security expert who goes by the name of "Cupidon-3005" has uploaded proof-of–concept code for an exploit that can blue screen all versions of Windows. The most vulnerable, according to Microsoft, are Windows Domain Controllers.

Not only can an attacker blue screen your machines, it also opens the machines up to remote code execution.

"The vulnerability is inside an error-reporting function of the CIFS browser service module. The function gets a variable number of arguments as parameters. Those string arguments are pushed on the stack for processing. In some cases, some of the strings can be controlled by the attacker," a TechNet blog explained.

Posted by Doug Barney on 02/23/2011 at 1:18 PM

Featured

Real-World Ransomware Recovery

Here's how I was (mostly) successful in recovering a family PC infected with malware.
Microsoft Launches Small AI Models Family Phi-3

Recognizing that bigger isn't always better, Microsoft has released its smallest open AI models to date, Phi-3.
Microsoft and OpenAI Continue Global AI Expansions

Microsoft and OpenAI each continued their global expansion this month, with the announcements of new infrastructure investments and service rollouts in new regions, like Asia and the Middle East.
Cisco Warns of Brute Force Attacks Targeting VPNs and Firewalls

Cisco has revealed that a global increase in brute force attacks targeting Virtual Private Networks (VPNs) and other devices is currently taking place.
What's Inside Microsoft 365's Security Toolbox?

Microsoft provides plenty of native tools to secure Microsoft 365. IT pros just have to know where to look.