SMB: Microsoft Windows SMBv3 Compression Information Disclosure
This signature detects attempts to exploit a known vulnerability against Microsoft Windows SMBv3 Compression. A successful attack can lead to sensitive information disclosure.
Extended Description
An information disclosure vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests, aka 'Windows SMBv3 Client/Server Information Disclosure Vulnerability'.
Affected Products
Microsoft windows_server_2016
References
CVE: CVE-2020-1206
Short Name
SMB:MS-SMBV3-COMP-INFO-DIS
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
SMB
Keywords
CVE-2020-1206 Compression Disclosure Information Microsoft SMBv3 Windows
Release Date
06/09/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3415
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.0