Microsoft Leaks Info on Wormable Windows SMBv3 CVE-2020-0796 Flaw

Rewterz Threat Advisory – Microsoft Patch Tuesday Fixes 115 Vulnerabilities

March 11, 2020

Rewterz Threat Advisory – CVE-2018-0296 – Cisco ASA and FTD Bug Attacked in Wild for DoS and Information Disclosure

March 11, 2020

Microsoft Leaks Info on Wormable Windows SMBv3 CVE-2020-0796 Flaw

Severity

High

Analysis Summary

CVE-2020-0796

The vulnerability is due to an error when the SMBv3 handles maliciously crafted compressed data packets and it allows remote, unauthenticated attackers that exploit it to execute arbitrary code within the context of the application.

Impact

Remote code execution

Affected Vendors

Microsoft

Remediation

Block TCP port 445 where possible.

Rewterz Threat Advisory – Microsoft Patch Tuesday Fixes 115 Vulnerabilities

Rewterz Threat Advisory – CVE-2018-0296 – Cisco ASA and FTD Bug Attacked in Wild for DoS and Information Disclosure

Microsoft Leaks Info on Wormable Windows SMBv3 CVE-2020-0796 Flaw

Severity

Analysis Summary

Impact

Affected Vendors

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan