H3-2020-0007
SMB Null Session Allowed
| Category | SECURITY_MISCONFIGURATION |
| Base Score | 0.1 |
Description
The SMB service on this host is configured to allow SMB null sessions. An attacker can exploit this misconfiguration by connecting to the server without providing any credentials, gaining access to potentially sensitive shared resources and information.
Impact
By exploiting this misconfiguration, an attacker can potentially enumerate user lists, access files and other network resources, which can then be used to facilitate further attacks on the network.
References
- CWE-284: Improper Access Control
- Network security: Allow LocalSystem NULL session fallback
- How to disable SMB/NETBIOS NULL Session on domain controllers
- Network access: Restrict anonymous access to Named Pipes and Shares
- SMB and Null Sessions: Why Your Pen Test is Probably Wrong
- Share Permissions
- MITRE ATT&CK Technique: T1135: Network Share Discovery