Question : Can someone please help me understand the ‘CIFS Account Password Never Expires’ vulnerability?
I was looking at a few vulnerability assessment reports, and it seems this is prevelant all over the place.
Can someone please help me understand this more?
Also, what’s the relationship between this and the ‘CIFS null session permitted’?
Solution: Can someone please help me understand the ‘CIFS Account Password Never Expires’ vulnerability?
http://www.vulnerabilityscanning.com/Users-information–Passwords-never-expires-Test_10900.htm
http://www.securityspace.com/smysecure/catdescr.html?cat=Windows+%3A+User+management
http://it.slashdot.org/article.pl?sid=05/12/09/0043224
i hope that is enough .. it is really just a matter of point of view. imagine your (never expire password) got exposed ?!…
hope that helped.
