Tuesday, September 8, 2009

windows 7 and windows server 2008 bug in smb2 allows for remote BSOD!

just discovered this while reading some blogs and tech sites, this guy is the one whom found it first and made a proof of concept:
http://g-laurent.blogspot.com/

here's the post on seclists.org:
http://seclists.org/fulldisclosure/2009/Sep/0039.html

here is my barely modified version, all i did was add an ip address and some more comments, just playin' around here at work, good times:
http://natefrogg.com/tmp/win_7-smb2_bsod.py.zip

it's a python script, i'm using it on a  mac, all you do is unzip it, drop to the directory you unzipped to, open the the python script up and modify the ip host variable to something more appropriate to your testing environment, then run:
python win_7-smb2_bsod.py

if it doesn't work, you most likely do not have file sharing enabled on the windows 7 or windows server 2008 machine

again, i did not discover this, i am just spreading the info