Timeline of the SMB2 vulnerability
While researching the SMB2 vulnerability I decided to make a time line. It really shows how devastating a 0-day can be in the wrong hands
| Date | Event |
| 7 September | Laurent GaffiƩ releases PoC code on his blog |
| 8 September | The news is picked up by Sans ISC |
| HD Moore ports the exploit to Metasploit | |
| Microsoft confirms the existence of the flaw | |
| Microsoft releases an advisory | |
| 9 September | The BSOD exploit is published on Milw0rm |
| 15 September | A working remote code execution exploit is released in Immunity Canvas |
| 18 September | A working remote code execution exploit is released for metasploit |
| Microsoft releases a tool to disable SMB2 | |
| 9 October | Microsoft announces a patch |
To date Microsoft has not released a patch. I will continue to update this post.
A tool to disable SMB2 is here. Instructions on how to disable SMB2 manually are in the workaround section of this advisory.
On the 9th of October Microsoft announced a patch for this issue and the ISS FTP issue.