Google

EXPLODINGCAN & ESTEEMAUDIT – Another Shadow

Written on:June 9, 2017
Comments
Add One

Derivado de las filtraciones que ha realizado el grupo Shadow Brokers en ellas están contenidos dos tipos de exploit/tool nombradas como EXPLODINGCAN & ESTEEMAUDIT.

Primero que nada es conveniente mencionar que estos exploit solamente afectan las plataformas de Windows Server 2003 R2 y Windows XP, a continuación describiremos cada una de ellas de acuerdo a su propósito y origen.

EXPLODINGCAN

  • Description:       This vulnerability can be exploited using a PROPFIND HTTP request with a long string value in the IF header, starting with “<http://”.
  • CVE:                      2017-7269
  • SO Affected:     Windows 2003 R2
  • Target:              Internet Information Server (IIS) Ver. 6 with plugin WebDAV
  • Service:            HTTP/HTTPS
  • Exploit public:   YES
  • Complexity:       Medium
  • Authentication:   None
  • Solution:            No solution was available at the time of this entry, upgrade IIS.
  • Workaround:       Disable WebDAV plugin

 

ESTEEMAUDIT

  • Description:       A remote user can send specially crafted RDP data to trigger an unspecified flaw in a SmartCard authentication function and execute arbitrary code on the target system.
  • CVE:                      2017-9073
  • SO Affected:     Windows XP, Server 2003
  • Target:              RDP
  • Service:            RDP/3389
  • Exploit public:    No
  • Complexity:       Medium
  • Authentication: Simple
  • Solution:           No solution was available at the time of this entry.
  • Workaround:    Disable RDP service

 

Fuentes:

http://securitytracker.com/id/1038264

http://securitytracker.com/id/1038168

https://blog.qualys.com/securitylabs/2017/03/31/microsoft-iis-6-0-buffer-overflow-zero-day

http://blog.talosintelligence.com/2017/04/shadow-brokers.html

https://arstechnica.com/security/2017/04/nsa-leaking-shadow-brokers-just-dumped-its-most-damaging-release-yet/

https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/

https://vuldb.com/?id.98561https://vuldb.com/?id.101491

Leave a Comment

Your email address will not be published. Required fields are marked *

%d bloggers like this: