Unrestricted SMB Visibility
Summary
Server Message Block (SMB) files shares are world visible (not
accessable). SARA could 'see' an SMB share. However, SARA could not
do a directory listing of the indicated share.
The Problem
This vulnerability allows hackers to view the names of the current SMB
shares. She could use this information to determine system configuration.
Further, it may give her a road map on vulnerable targets.
Fix
Confirm that there are no shares that allow universal visibility. This
is true for Microsoft Windows and Unix operating SAMBA.