The Redirect to SMB flaw is a hijacking vulnerability that resides in the way Windows OSs and other applications, including Adobe Flash and iTunes, handles some HTTP requests. Microsoft has not released a fix for the flaw. The vulnerability was investigated for the first time by Aaron Spangler nearly 20 years ago. The attack could be very effective is attackers use it in a first stage of an attack to gather sensitive credentials to use later in a phishing attack. A number of Windows functions are affected by the vulnerability, including URLDownloadA, URLDownloadToFile, URLWCacheW, URLOpenBlocking.”]
Source: http://securityaffairs.co/wordpress/35958/hacking/redirect-to-smb-vulnerability.html