Martin's selection of few interesting IT Security, Privacy, and free tools from the Net: Another Reason to Block SMB Ports on the Firewall - An important vulnerability in Microsoft Outlook allow attackers to steal sensitive information, including users' Windows login credentials, just by convincing victims to preview an email with Microsoft Outlook.

Thursday, April 12, 2018

Another Reason to Block SMB Ports on the Firewall - An important vulnerability in Microsoft Outlook allow attackers to steal sensitive information, including users' Windows login credentials, just by convincing victims to preview an email with Microsoft Outlook.

Microsoft has released an incomplete patch this month—almost 18 months after receiving the responsible disclosure report.

The security patch only prevents Outlook from automatically initiating SMB connections when it previews RTF emails, but the researcher noted that the fix does not prevent all SMB attacks.

"It is important to realize that even with this patch, a user is still a single click away from falling victim to the types of attacks described above," Dormann said. "For example, if an email message has a UNC-style link that begins with "\\", clicking the link initiates an SMB connection to the specified server."

https://thehackernews.com/2018/04/outlook-smb-vulnerability.html

Martin's selection of few interesting IT Security, Privacy, and free tools from the Net

Thursday, April 12, 2018

Another Reason to Block SMB Ports on the Firewall - An important vulnerability in Microsoft Outlook allow attackers to steal sensitive information, including users' Windows login credentials, just by convincing victims to preview an email with Microsoft Outlook.

No comments:

Post a Comment

Popular Posts

Categories

Blog Archive