Alias(es)Windows.SMB.Handlers.Remote.Buffer.Overflow.445, MS.Windows.SMB.Response.Handling.Buffer.Overflow, MS.Windows.SMB.Response.Handling.Buffer.Overflow.B |
Release DateJun 23, 2005 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates a possible exploit of a remote buffer overflow vulnerability in Microsoft's SMB implementation.The vulnerability is caused by an error when the vulnerable software handles a malicious transaction responses for Trans or Trans2 commands . It allows a remote attacker to execute arbitrary code via sending a crafted smb Trans or Trans2 response packet. |
Affected ProductsMicrosoft Windows 2003Windows 2000 Windows XP. |
Recommended ActionsApply patch, available from the web site:http://www.microsoft.com/technet/security/bulletin/ms05-011.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2005-0045 |
Reference/shttp://marc.theaimsgroup.com/?l=bugtraq&m=110792638401852&w=2http://technet.microsoft.com/en-us/security/bulletin/MS05-011.mspx (MS-ID) http://www.securityfocus.com/bid/12484 (BugTraq) |
