漏洞类别:SMB / NETBIOS
漏洞等级: 
漏洞信息
A Null session is an anonymous connection to an inter-process communication network service on Windows-based computers.
The service is designed to allow named pipe connections but may be used by attackers to remotely gather information about the system.
The target can be connected by a Null session (no username and no password).
QID detection logic (unauthenticated):
The target can be connected by a Null session (no username and no password). This QID does not test for registry key or file access on the target.
漏洞危害
An attacker can call APIs and use Remote Procedure calls to enumerate information. Null session access can be used for escalating privileges and perform DoS attacks.
解决方案
- Block NetBIOS on your Windows server by preventing these TCP ports 139, and 445 from passing through your network firewall or host based firewall.
- Disable File and Printer Sharing
- Restrict anonymous connections to the system
0daybank
文章评论