Don’t panic re this one.https://twitter.com/briankrebs/status/1216847668414222336 …
-
Show this thread
-
It's not an RCE, it's not EternalBlue etc etc.
5 replies 2 retweets 19 likesShow this thread -
Here's a question - do you use digital signatures as a key security boundary control? I can count on my left little finger the amount of orgs that do. Patch your Citrix, Fortigate, Pulse Secure SSL VPN boxes and your 11 month old SharePoint vuln. And turn off SMB1.
7 replies 31 retweets 128 likesShow this thread -
There’s a bit more info here, the MS patches drop in about half an hour. Btw it doesn’t apply to Win7, 2008.https://www.bbc.com/news/technology-51106356 …
6 replies 12 retweets 43 likesShow this thread -
The Microsoft advisory is out now. 1) it’s only rated Important 2) it’s a spoofing issue 3) to get RCE with it you would need auth, and to have code exec already The NSA did a big press tour so before announcement so expect big media play. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601 …
7 replies 36 retweets 80 likesShow this thread -
Replying to @GossiTheDog
The other
@wdormann reported issue appears worse, if you use Remote Desktop Gateway? Unauthenticated RCE. And appears to affect 2008, but no patch for 2008 today? CVE-2020-0609, CVE-2020-0610https://www.kb.cert.org/vuls/id/491944/2 replies 0 retweets 1 like
Sometimes there is a difference in the time when a feature was introduced vs. when it became vulnerable. Microsoft indicates that only RD Gateway in Server 2012 and later are affected. I have no reason not to believe them. I've updated the CERT vul note to use better wording.
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.