Additional logging for SMB authentication while scanning

Change

Environmental factors in a customer's environment can affect scan results. We want to provide visibility when this happens so customers can take steps to resolve the environmental issues in their network in order to be able to determine their cyber exposure more accurately. Specifically, this change enhances visibility by tracking SMB authentication successes and failures when local checks are enabled and reporting intermittent authentication failures to the same scan targets during the course of a scan.  

Impact

Customers might observe increased logging of SMB authentication failures in plugin ID 104410 - Authentication Failure(s) for Provided Credentials and plugin ID 117885 - Authentication Success with Intermittent Failure. This change does not have an impact on scan results and only enhances visibility into what is already happening during the scan. 

Target Release Date

10 March 2020

Plugins Updated

10150 - Windows NetBIOS / SMB Remote Host Information Disclosure

10394 - Microsoft Windows SMB Log In Possible

10396 - Microsoft Windows SMB Shares Access

10395 - Microsoft Windows SMB Shares Enumeration

23973 - SMB Share Files Enumeration

29855 - MS07-063: Vulnerability in SMBv2 Could Allow Remote Code Execution (942624) 

53493 - Dell KACE K2000 Appliance Hidden CIFS Fileshare Information Disclosure

65057 - Insecure Windows Service Permissions

82580 - Samba 3.0.0 'SamrChangePassword' RCE

102683 - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-8543)

117885 - Authentication Success with Intermittent Failure

(along with associated library changes)

Other Plugins that are enhanced as a result of the change

100095 - Authentication Success

104410 - Authentication Failure(s) for Provided Credentials

__________________________________

Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.