New bugs allow Hacker’s to crash any window 10 system released on GitHub platform.
The Zero-Day Vulnerability is released in the wild on the GitHub Platform, Anyone with some technical knowledge can make your Window 10 device crash which is running on BSOD Screen.
The Zero-day was discovered by a researcher that goes by PythonResponder on Twitter, and who published the proof-of-exploit code for it on GitHub on Wednesday.
How this Windows 10 zero-day works:
The Window zero-day bug actually a memory corruption bug in SMB traffic.And it could be easily exploited by forcing a window system to connect to a fake malicious SMB. The bug can only harm if a user clicks to a can trick user into clicking on a malicious link containing the exploit.
The Zero-Day bug is yet to be patched by Microsoft and works on Windows 7/8.1 and Windows 10. The researcher says that he shared knowledge of the flaw with Microsoft, and claims that “they had a patch ready 3 months ago but decided to push it back.” According to the news, the patch will be delivered on Tuesday.
How To Be Safe?
The only safe way is to not to click on any unknown links shared by any unknown user or don’t click on any unknown posts or emails.System admin can prevent it from being exploited by blocking outbound SMB connections (TCP ports 139 and 445, UDP ports 137 and 138) from the local network to the WAN, as advised by CERT/CC.
SMB Bug Link: Click Here.