UPDATE 4/12/16: Today, Microsoft released a critical patch to address the vulnerability identified as “Badlock”. The patch is part of a larger critical cumulative update package. (3147458)
- Cumulative update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4: April 12, 2016
https://support.microsoft.com/en-us/kb/3147458
The individual patch (3148527) itself is documented here:
- Security Update for Microsoft Security Bulletin MS16-047 – Important
SAM and LSAD Remote Protocols (3148527)
https://support.microsoft.com/kb/3148527
———————-
ORIGINAL POST:
Badlock is a vulnerability to be released April 12 that attacks a weakness in the SMB/CIFS networking protocol.
While the vulnerability seems to be directed towards Microsoft and Samba, it also appears to impact major cloud file sharing providers and other operating systems distributions.
There’s a web site with very few details about the threat at http://badlock.org/.
Here’s a few articles about the topic:
- ZDNET: Badlock, another ‘major’ security bug that puts profits before patches
http://www.zdnet.com/article/badlock-another-new-major-security-bug-that-profits-from-publicity/ - SECURITYWEEK: Microsoft, Samba Preparing Patch for Severe "Badlock" Flaw
http://www.securityweek.com/microsoft-samba-preparing-patch-severe-badlock-flaw - THREATPOST: Badlock Vulnerability Clues Few and Far Between
https://threatpost.com/badlock-vulnerability-clues-few-and-far-between/117008/ - SEARCHSECURITY: Badlock flaw hits Samba, Windows and responsible disclosure
http://searchsecurity.techtarget.com/news/450280211/Badlock-flaw-hits-Samba-Windows-and-responsible-disclosure - WIRED: Hype Around The Mysterious ‘BadLock’ Bug Raises Criticism
http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-criticism/ - INFOWORLD: The Badlock bug: Start your patch prep today
http://www.infoworld.com/article/3048452/security/the-badlock-bug-start-your-patch-prep-today.html
(Thanks to coworker & Account Technology Strategist, Peter Renner, for bringing this to my attention)
kurtsh
Kurt Shintaku's Blog 