Hacker News new | past | comments | ask | show | jobs | submit login

It's worth following @hackerfantastic (https://twitter.com/hackerfantastic) on twitter at the moment as he's looking through some of the exploits that were dropped along with this documents.

Highlights so far are a 0-day in windows from NT-->2012 which reliably exploits over the SMBv2 port and a bunch of other stuff. (https://twitter.com/hackerfantastic/status/85291588665052774...)




sounds familiar - we found that one 1996 when doing system programming on NT (NuMega SoftIce was your best friend together with material published by Mark Russinovich prior of him working with MS - remember when you were doing e.g. a file system driver at that time there was close to zero documentation by MS and half of what they provided was wrong). Demonstrated then how to use it to log onto remote Windows systems over the I-Net and gain Admin rights. I thought this one with all what was published about it long ago would be well known since.

Astounded that it took so long to fix and that it passed on through generations of Windows version.

Almost certain similar can be said of other low level "bugs".


How do you know it's the same bug?


same result - only one issue like that known to me So of course I could be wrong and this issue is not the only one in that protocol implementation / sys component(s)


SMB protocol was a well known source of bugs, lots of service packs used to patch this service (funny that it was enabled on network facing machines. I think it was because windows server needed to be ready for every use case. They could have had it easier by having a separate windows product with non essential services disabled by default)


In this, or the other recent tool exposes, have there been any exploits for FreeBSD ?

How about OpenSSH or sendmail or Apache httpd (on any UNIX platform) ?


Nope. Why people/companies insist the Microsoft is usable on the open internet today, despite all evidence to the contrary, is beyond me. They are not, and have not been, suitable-for-the-datacenter/internet for well over a decade now. Let the company and its swiss-cheese OS die already.


I've got to say I've been in security for 17 years now, and Microsoft's security has improved vastly over that time.

Are you suggesting that other operating systems have better security or just that they're all terrible?


Both are true. Microsoft has gotten a lot better. There are other operating systems that are more secure.


Microsoft are leaps and bounds ahead of where they were - IIS 4.0 is likely the least secure software ever placed on the live internet


>swiss-cheese OS

I sure hope you're not suggesting that Linux and its dozens of critical CVEs each year is better. Clearly you're talking about running the internet on BSDs, right?

Right?


> have there been any exploits for FreeBSD ?

ShadowBrokers is releasing these exploits to make a loud noise. FreeBSD exploits probably won't be covered on CNN.


If I had a 0-day for openssh I'd be selling it to people I could be sure would keep it a secret.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: