Submitted via IRC for soycow1984
Microsoft has patched only recent versions Windows against a dangerous hack that could allow attackers to steal Windows NTLM password hashes without any user interaction.
The hack is easy to carry out and doesn't involve advanced technical skills to pull off. All the attacker needs to do is to place a malicious SCF file inside publicly accessible Windows folders.
Once the file has been placed inside the folder, it executes due to a mysterious bug, collects the target's NTLM password hash, and sends it to an attacker-configured server. Using publicly available software, an attacker could crack the NTLM password hash and later gain access to the user's computer.
Such a hack would allow an attacker that has a direct connection to a victim's network to escalate access to nearby systems.
Source: Bleeping Computer
(Score: 5, Interesting) by tibman on Wednesday November 08 2017, @03:35PM
Uploading this scf to a public (unpassworded) share causes the machine to lock. I wonder if it will re-lock on reboot? Talk about a quick way to take down some network resources : /
Since Microsoft isn't patching older versions of windows server then this exploit will remain valid for a long time.
Disclaimer: I haven't tried it.
SN won't survive on lurkers alone. Write comments.