troubleshooting Question

Microsoft Security Bulletin MS17-010 - Security Update for Microsoft Windows SMB Server (4013389)

Avatar of fieldj
fieldjFlag for United Kingdom of Great Britain and Northern Ireland asked on
SecurityVulnerabilitiesMicrosoft Server OSWindows Server 2008WSUS
5 Comments3 Solutions18071 ViewsLast Modified:
Hi all,

I am sure that some people have been dealing with this recent security issue regarding disabling SMBv1.

Further details here:

https://www.us-cert.gov/ncas/current-activity/2017/01/16/SMB-Security-Best-Practices

Apparently this is now fixed by installing a Windows patch detailed in this Technet article (published March 14 2017):

https://technet.microsoft.com/library/security/MS17-010

However, I have noticed that even after installing this patch, a vulnerability scan on a test server is still reporting this vulnerability.  If I perform the manual reg key fix (detailed here: https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012 ) the vulnerability scan reports that the vulnerability has been removed.

My question is, does the Windows security patch detailed in article MS17-010 truly fix the issue? Does my vulnerability scan just need to update to realise that this patch resolves the issue (I dont think that an update has been available since Microsoft released this patch)?
ASKER CERTIFIED SOLUTION
Join our community to see this answer!
Unlock 3 Answers and 5 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 3 Answers and 5 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros