Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft's "Dead Cow" Patch Was 7 Years In the Making

Posted by timothy on from the were-they-lean-years-or-fat-years? dept.

narramissic writes "Back in March 2001, a hacker named Josh Buchbinder (a.k.a Sir Dystic) published code showing how an attack on a flaw in Microsoft's SMB (Server Message Block) service worked. Or maybe the flaw was first disclosed at Defcon 2000, by Veracode Chief Scientist Christien Rioux (a.k.a. Dildog). It was so long ago, memory is dim. Either way, it has taken Microsoft an unusually long time to fix. Now, a mere seven and a half years later, Microsoft has released a patch. 'I've been holding my breath since 2001 for this patch,' said Shavlik Technologies CTO Eric Schultze, in an e-mailed statement. Buchbinder's attack, called a SMB relay attack, 'showed how easy it was to take control of a remote machine without knowing the password,' he said."

3 of 203 comments (clear)

  1. Re:SMB? by corsec67 · · Score: 5, Informative

    SMB is used by Windows for file/printer sharing.

    --
    If I have nothing to hide, don't search me
  2. Re:SMB? by eln · · Score: 5, Informative

    http://en.wikipedia.org/wiki/Server_Message_Block

    Also,

    http://justfuckinggoogleit.com/

  3. Re:SMB? by corsec67 · · Score: 5, Informative

    http://en.wikipedia.org/wiki/Cult_of_the_Dead_Cow
    and
    http://en.wikipedia.org/wiki/SMBRelay

    --
    If I have nothing to hide, don't search me