Merge remote-tracking branch 'remotes/origin/master'

Rafik-Ben · May 2, 2018 · d8315ff · d8315ff
2 parents baea82a + 289724e
commit d8315ff
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -29,5 +29,13 @@ python badpdf.py
 
 ![alt text](https://github.com/deepzec/Bad-Pdf/blob/master/screenshots/NTLM-hash.PNG "Bad-PDF")
 
-#### Author : Deepu TV Contact me @twitter.com/DeepZec 
+#### Mitigations:
+
+* Vendor patches are not available for this vulnerability. 
+
+* Microsoft issued an optional security enhancement [0] late last year that provides customers with the ability to disable NTLM SSO authentication as a method for public resources.
+
+* Disable external SMB access in firewall to prevent NTLM hash leak to internet
+
+#### Author : Deepu TV ; Feel free to contact me @twitter.com/DeepZec