This article discusses the CVE-2017-0144 vulnerability and the EternalBlue exploit that takes advantage of it. It explains how the exploit works and provides a risk assessment of the exploit to Files'R'Us company. It also suggests preventative measures to avoid future exploitation.

Assignment 1

Perform the EternalBlue exploit on a vulnerable system or a provided Virtual Machine.

Learn about CVE-2017-0144 vulnerability and EternalBlue exploit, assess risk, and prevent future exploitation.

CVE-2017-0144 Vulnerability and EternalBlue Exploit: Risk Assessment and Preventative Measures

This project explores the leveraging of the vulnerability CVE-2017-0144, also known as Eternal Blue, in SMB. It discusses the critical issues, risk assessment, proof of concept, immediate remediation actions, and future prevention policies.

Hartpury University and Hartpury College

Exploiting the Eternal Blue Vulnerability (CVE-2017-0144) in SMB

Computer Security

This vulnerability  allows the   attackers

Earth and Life science

This paper discusses the EternalBlue exploit, its demonstration using Metasploit tool, and risk assessment. It also suggests five mitigation practices to minimize the impact of the exploit. The subject is cybersecurity and the course code is not mentioned. The college/university is not mentioned.

EternalBlue Exploit: Demonstration and Risk Assessment

This paper highlights the reasons behind the occurrence of CVE-2017-0144 vulnerability in the Common Vulnerability and Exposure (CVE) catalogue. The measures that can be taken to prevent these attacks in the future are also described in the following paragraphs.

CVE-2017-0144 Vulnerability

Contents Executive Summary 1 Technical Description 1 Vulnerability Description 1 Attack Vector 1 Exploitation Scenario 1 Mitigation 2 Remediation 2 References 2 Executive Summary EternalBlue is the name that has been given to a vulnerability present in Microsoft’s Windows Operating systems. As mentioned previously, Eternalblue exploit takes full advantage of the SMB vulnerability that has already been addressed by Microsoft in their security bulletin MS17-010 that spreads across internal network and gets connected by the Port TCP 445 of systems that have not been patched yet

EternalBlue: A Security Reference Code for MS17-010

Dissertation

This article provides a technical description of the Windows RPC vulnerability CVE-2008-4250, including its attack vectors and mitigation. The vulnerability affects Windows XP, Server 2003, and 2000 operating systems and can be exploited without authentication. The vulnerability is prone to mass automated exploits and has been used by the Conficker virus to infect about 370,000 machines. Mitigation strategies include upgrading to a higher version of Windows Operating Systems, disabling the computer browser server service, and blocking TCP Ports including 445 and the 139.

CVE-2017-0144 Vulnerability and EternalBlue Exploit: Risk Assessment and Preventative Measures

End of preview

Exploiting the Eternal Blue Vulnerability (CVE-2017-0144) in SMB

This vulnerability allows the attackers

EternalBlue Exploit: Demonstration and Risk Assessment

CVE-2017-0144 Vulnerability

EternalBlue: A Security Reference Code for MS17-010

Windows RPC Vulnerability CVE-2008-4250: Technical Description, Attack Vectors, and Mitigation

CVE-2017-0144 Vulnerability and EternalBlue Exploit: Risk Assessment and Preventative Measures

End of preview

Exploiting the Eternal Blue Vulnerability (CVE-2017-0144) in SMBlg...

This vulnerability allows the attackerslg...

EternalBlue Exploit: Demonstration and Risk Assessmentlg...

CVE-2017-0144 Vulnerabilitylg...

EternalBlue: A Security Reference Code for MS17-010lg...

Windows RPC Vulnerability CVE-2008-4250: Technical Description, Attack Vectors, and Mitigationlg...

Exploiting the Eternal Blue Vulnerability (CVE-2017-0144) in SMB

This vulnerability allows the attackers

EternalBlue Exploit: Demonstration and Risk Assessment

CVE-2017-0144 Vulnerability

EternalBlue: A Security Reference Code for MS17-010

Windows RPC Vulnerability CVE-2008-4250: Technical Description, Attack Vectors, and Mitigation