‘SlowLoris’ flaw could see a mouse of a machine take down an elephant of a server
An SMBv1 bug described late last week at DEF CON won’t be patched, because Redmond says it only needs a suitable block on connections coming from the Internet.
The 20-year-old bug was discovered by two RiskSense researchers combing code for vulnerabilities exposed by the NSA’s EternalBlue exploit.
View Full Story
ORIGINAL SOURCE: The Register