question

SeemaKanwalGurmani-8582 avatar image
0 Votes"
SeemaKanwalGurmani-8582 asked SeemaKanwalGurmani-8582 action

FortiNet Threat Report shows error "MS.SMB.Server.Trans.Peeking.Data.Information.Disclosure"

Dear Community,

Kindly help me out in this matter.
As I have this question regarding FortiNet Threat Report, it shows "MS.SMB.Server.Trans.Peeking.Data.Information.Disclosure" and why Firewall is showing it?What is this Threat Report about? Shoud I be concerned about it?
I have also attached a screenshot.85597-summary-report-issue.png
Kindly help me out in this regard.


windows-10-security
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Reza-Ameri avatar image
0 Votes"
Reza-Ameri answered SeemaKanwalGurmani-8582 commented

This is not a Microsoft product so we couldn't comment on it.
You need to contact their support:
https://support.fortinet.com/

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

I know It's a third party product and I first approached them for the said issue.
But they responseded back with the details saying that it's a "Memory Corruption Vulnerability in Windows 10 SMB Server".


Link1: https://www.fortinet.com/blog/threat-research/cve-2020-0796-memory-corruption-vulnerability-in-windows-10-smb-server
I had also raised the question with FortiClient Forum the only thing they shared with me is this.

Here is the link to the post:
Link2: https://forum.fortinet.com/tm.aspx?m=195233
The first link was shared by Community Member of Forticlinet. where it gives all details like "Memory Corruption Vulnerability in Windows 10 SMB Server"

0 Votes 0 ·
CandyLuo-MSFT avatar image
0 Votes"
CandyLuo-MSFT answered

Hi,

Please understand, FortiNet is a third-party product which we are not familiar with it. You would better contact FortiNet's support to learn more details.

Also make sure you have patched with your windows 10 with fully windows updates. Here is windows 10 update history.

Best Regards,
Candy


If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

CandyLuo-MSFT avatar image
0 Votes"
CandyLuo-MSFT answered CandyLuo-MSFT commented

Hi,

What's the OS version of your windows 10? 1909 or 1903?

For CVE-2020-0796, just make sure you have patched with windows with fully windows updates.

As you can see below, the security KB is released from Mar 12, 2020. And now it should be replaced by the latest Cumulative Update. So, just make sure you have patched with your windows 10 with fully windows updates.

86148-image.png

Windows SMBv3 Client/Server Remote Code Execution Vulnerability

Best Regards,
Candy


If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.



image.png (90.0 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thanks for your Reply. I will get back to you.

0 Votes 0 ·
CandyLuo-MSFT avatar image CandyLuo-MSFT SeemaKanwalGurmani-8582 ·

I will wait for your updates. If the reply is helpful, please accept it as answer. Thanks for your understanding. :)

0 Votes 0 ·
Reza-Ameri avatar image
0 Votes"
Reza-Ameri answered

You may solve this issue by update your system , take a look at:
https://support.microsoft.com/en-us/topic/march-12-2020-kb4551762-os-builds-18362-720-and-18363-720-b542fc1d-21dc-6295-1c8d-ed40fedb0742
In case you are using Windows Update Catalog , it is the following update:
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4551762
Install the one applicable in your operating system.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.