Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: exploitability of the most recent Windows BROWSER protocol issue

19 Feb 2011   #1

Win 7 Ultimate 64-bit. SP1.
exploitability of the most recent Windows BROWSER protocol issue


Earlier this week a PoC exploit for a vulnerability in the BROWSER protocol was released on Full Disclosure. There has been some discussion regarding whether this issue can result in Remote Code Execution (RCE) or is only a Denial of Service (DoS). This blog post provides details on the exploitability based on our internal analysis.

Which systems are vulnerable

All versions of Windows are vulnerable, although the issue is more likely to affect server systems running as the Primary Domain Controller (PDC). In environments following best practices, the BROWSER protocol should be blocked at the edge firewalls thus limiting attacks to the local network.

The BROWSER protocol operates on top of SMB and is used to discover machines and resources on the network. It is implemented as a kernel driver (mrxsmb.sys or bowser.sys, depending on the version of Windows). This vulnerability affects Windows machines that have been configured to (A) use the BROWSER network protocol and (B) that then become Master Browser on the local network. The BROWSER protocol uses an election process to determine which system will act as the “master” in terms of data collection and response handling.
Notes on exploitability of the recent Windows BROWSER protocol issue - Security Research & Defense - Site Home - TechNet Blogs

My System SpecsSystem Spec


 exploitability of the most recent Windows BROWSER protocol issue

Thread Tools

Similar help and support threads for2: exploitability of the most recent Windows BROWSER protocol issue
Thread Forum
How do I enable telnet:// protocol links in IE8 for Windows 7 x64 Browsers & Mail
Frequent BSODs. Recent issue. BSOD Help and Support
CIFS Browser Protocol Heap Corruption Vulnerability Security News
Recent W7 repair install issue Installation & Setup
router issue causes hanging browser - could it be a Windows 7 update? Network & Sharing
Interesting connectivity issue, just a browser issue Network & Sharing

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 09:49 AM.
Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33