Fwd: [Full-disclosure] Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D.

Jeremy Allison jra at samba.org
Tue Sep 8 18:01:32 MDT 2009

On Tue, Sep 08, 2009 at 05:56:30AM +0100, Nick Boyce wrote:
> I'm just reposting this from another list in case some here find this
> interesting or helpful - denial-of-service attack against the SMB2 in
> Windows Vista, 7 and 2008 (?).
> I suppose Samba V4 speaks SMB2, while V3 does not ... but I'm just a user :)

No, V3 speaks SMB2 as well (although it's not on by default yet).

> Obviously the codebases are not Microsoft's, but the designs may be close -
> hence the forward.  Otherwise sorry for the noise.

Thanks, we'll look at it but I doubt we'll be vulnerable. We
have our own bugs to worry about :-).



More information about the samba-technical mailing list