Collaborate Disseminate
The much anticipated Badlock vulnerability wasn’t in the SMB protocol after all, but in SAM and LSAD and exposed Windows machines to privilege escalation. Continue reading Badlock Vulnerability Falls Flat Against Its Hype
The Security Account Manager Remote(SAMR)and Local Security Authority(Domain Policy)(LSAD)protocols do not properly establish Remote Procedure Call(RPC)channels,which may allow any attacker to impersonate an authenticated user or gain access to the SAM database,or launch denial of service attacks. This vulnerability is also known publicly as"Badlock". Continue reading VU#813296: Microsoft Windows and Samba may allow spoofing of authenticated users ("Badlock")