Access bypass - CVE-2016-0917
Published: September 21, 2016
Vulnerability identifier: #VU564
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-0917
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor:
Affected software:
Detailed vulnerability description
The vulnerability allows a remote user to gain access to the target SMB share.
The weakness is caused by insufficient entropy for generating nonces during NTLM authentication implementation. Attackers can cause repeated server generating of nonce response and spoof a valid authentication token that allows them to access SBM share.
Successful vulnerability allow a malicious user to obtain the vulnerable SBM share.
The weakness is caused by insufficient entropy for generating nonces during NTLM authentication implementation. Attackers can cause repeated server generating of nonce response and spoof a valid authentication token that allows them to access SBM share.
Successful vulnerability allow a malicious user to obtain the vulnerable SBM share.
How to mitigate CVE-2016-0917
Cybersecurity Help is currently unaware of any official patch, which addresses this vulnerability.