Rating is available when the video has been rented.
This feature is not available right now. Please try again later.
Published on Dec 29, 2015
by Jonathan Brossard & Hormazd Billimoria
In this presentation, we detail a new attack vector against SMBv2, affecting all versions of IE, including the Spartan version shipped with Windows10. While attacks involving SMB have long time been common in LANs, our attack allows complete user compromise from the internet. By leveraging a series of bugs and malfunctions, we'll see how remote credentials theft or user impersonation can be performed without user interaction, extremely reliably, and from the Internet.