all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Creating a vulnerable node based on the vulnerability MS17-010. (arXiv:2401.14979v1 [cs.CR])

Add to bookmarks
Jan. 29, 2024, 2:10 a.m. | Aleksey Novokhrestov, Anton Kalyakin, Aleksandr Kovalenko, Vladimir Repkin

cs.CR updates on arXiv.org arxiv.org

The creation of a vulnerable node has been demonstrated through the analysis
and implementation of the MS17-010 (CVE-2017-0144) vulnerability, affecting the
SMBv1 protocol on various Windows operating systems. The principle and
methodology of exploiting the vulnerability are described, with a formalized
representation of the exploitation in the form of a Meta Attack Language (MAL)
graph. Additionally, the attacker's implementation is outlined as the execution
of an automated script in Python using the Metasploit Framework. Basic security
measures for systems utilizing …

analysis arxiv cve exploitation exploiting implementation methodology node operating systems protocol representation smbv1 systems vulnerability vulnerable windows

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Why You Should Not Trust Interpretations in Machine Learning: Adversarial Attacks on Partial Dependence Plots 7 hours ago | arxiv.org
adoption adversarial adversarial attacks artificial +22
Sui Lutris: A Blockchain Combining Broadcast and Consensus 7 hours ago | arxiv.org
agreement arxiv blockchain broadcast +12
Jolteon and Ditto: Network-Adaptive Efficient Consensus with Asynchronous Fallback 7 hours ago | arxiv.org
arxiv asynchronous blockchains clear +19
Noisy Measurements Are Important, the Design of Census Products Is Much More Important 7 hours ago | arxiv.org
arxiv asking august call +19
Graphene: Infrastructure Security Posture Analysis with AI-generated Attack Graphs 7 hours ago | arxiv.org
analysis arxiv assessment attack +31
REED: Chiplet-Based Accelerator for Fully Homomorphic Encryption 7 hours ago | arxiv.org
accelerator accelerators address application +14
Evaluation Methodologies in Software Protection Research 7 hours ago | arxiv.org
arms arxiv assets attackers +20
SoK: Rowhammer on Commodity Operating Systems 7 hours ago | arxiv.org
academia access arxiv attacks +17
Quantum cryptographic protocols with dual messaging system via 2D alternate quantum walks and genuine single … 7 hours ago | arxiv.org
alternate arxiv can cond-mat.dis-nn +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs