CERT/CC Reports a Microsoft SMB Vulnerability

Archived Content

In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.

CERT Coordination Center (CERT/CC) has released information on a Server Message Block (SMB) vulnerability affecting Microsoft Windows. Exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service condition.

No patches are currently available, but mitigations include blocking outbound SMB connections (TCP ports 139 and 445 and UDP ports 137 and 138) from the local network to the wide-area network. For more information, see VU#867968.

Archived Content

CERT/CC Reports a Microsoft SMB Vulnerability

JCDC Cultivates Pre-Ransomware Notification Capability

Cisco Releases Security Advisories for Multiple Products

CISA Releases Six Industrial Control Systems Advisories

Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments

Archived Content

CERT/CC Reports a Microsoft SMB Vulnerability

Related Advisories

JCDC Cultivates Pre-Ransomware Notification Capability

Cisco Releases Security Advisories for Multiple Products

CISA Releases Six Industrial Control Systems Advisories

Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments