Badlock
Badlock is a security bug disclosed on April 12, 2016 affecting the Security Account Manager (SAM) and Local Security Authority (Domain Policy) (LSAD) remote protocols[1] supported by Windows and Samba servers.[2]
Both SAM and LSAD are layered onto the DCE 1.1 Remote Procedure Call (DCE/RPC) protocol. As implemented in Samba and Windows, the RPC services allowed an attacker to become man in the middle.[3] Although the vulnerability was discovered during the development of Samba, the namegiving SMB protocol itself is not affected.
References
- ↑ "Microsoft Security Bulletin MS16-047". Retrieved 13 April 2016.
- ↑ "Badlock Bug". Badlock Bug. Retrieved 12 April 2016.
- ↑ "CVE-2016-2118". Retrieved 13 April 2016.
External links
This article is issued from Wikipedia - version of the 10/26/2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.