Unrestricted SMB Visibility


Summary

Server Message Block (SMB) files shares are world visible (not accessable). SARA could 'see' an SMB share. However, SARA could not do a directory listing of the indicated share.

The Problem

This vulnerability allows hackers to view the names of the current SMB shares. She could use this information to determine system configuration. Further, it may give her a road map on vulnerable targets.

Fix

Confirm that there are no shares that allow universal visibility. This is true for Microsoft Windows and Unix operating SAMBA.