SAM and LSAD remote protocols man in the middle vulnerability (Badlock) Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-16-007 Final 1 1 2016-04-14T00:00:00 Current version 2016-04-14T00:00:00 2016-04-14T00:00:00 The Security Account Manager Remote Protocol [MS-SAMR] and the Local Security Authority (Domain Policy) Remote Protocol [MS-LSAD] are both vulnerable to man in the middle attacks. These protocols are typically available on all Windows installations as well as every Samba server. An MitM attacker could force a downgrade of the authentication level of the SAM and LSAD channels and impersonate an authenticated user. All the Fortinet products are confirmed to be not affected. https://fortiguard.fortinet.com/psirt/FG-IR-16-007 SAM and LSAD remote protocols man in the middle vulnerability (Badlock) https://technet.microsoft.com/library/security/ms16-047 https://technet.microsoft.com/library/security/ms16-047 https://www.samba.org/samba/security/CVE-2016-2118.html https://www.samba.org/samba/security/CVE-2016-2118.html CVE-2016-2118 CVE-2016-0128 https://fortiguard.fortinet.com/psirt/FG-IR-16-007 SAM and LSAD remote protocols man in the middle vulnerability (Badlock) Reference> https://technet.microsoft.com/library/security/ms16-047 https://technet.microsoft.com/library/security/ms16-047 https://www.samba.org/samba/security/CVE-2016-2118.html https://www.samba.org/samba/security/CVE-2016-2118.html