search cancel

Vulnerability Microsoft Windows SMB NULL session authenticated

book

Article ID: 254674

calendar_today

Updated On:

Products

DX NetOps CA Performance Management - Usage and Administration

Issue/Introduction

Vulnerability "Microsoft Windows SMB NULL session authenticated"CWE-284.

Environment

PM Release : 21.2.x/22.2.x

Cause

The remote host is running Microsoft Windows. It is possible to log into it using a NULL session (i.e., with no login or password).
Depending on the configuration, it may be possible for an unauthenticated, remote attacker to leverage this issue to get information about the remote host.

Resolution

The identified vulnerability is related to the operating system server. This does not affect the product.