The SMB 2.0 vulnerability that was found earlier this month, is set to be covered with a patch soon according to Microsoft. Next Patch-Tuesday is only on Oct 13 so one would hope that it comes before. Especially as there is exploit code out in the wild now, with Stephen Frewer of Harmony Security adding code to the Metasploit Framework.
In the following article, Microsoft indicates they are unhappy with the method of disclosure. One wonders what else Microsoft needs seeing that both they ( and CVE ) had this information on the 8th of Sept. yet have done nothing about it. The initial reports were quite understated yet I Twittered that I thought this was serious; and it is. The vulnerability allows one to take complete control of a target system using the new SMB 2.0 protocol included in Vista and Server 2008 – scary.
More info from SC here. Microsoft has a temporary workaround here while a patch is coded. Corporate IT departments are going to have some fun with this one …
