| Name | MS.SMB2.Negotiation.Handler.Code.Execution |
| Release Date | Sep 09, 2009 |
| Severity | Critical |
| Impact | System Compromise: Remote attackers can gain control of vulnerable systems. |
| Description | This indicates an attack attempt to exploit a memory corruption vulnerability in Microsoft Server Message Block (SMB).
The vulnerability is caused by an error that occurs when Microsoft Server Message Block (SMB) Protocol 2.0 software handles a malformed NEGOTIATE PROTOCOL request. A remote attacker could exploit this vulnerability to execute arbitrary code. |
| Affected Products | Windows Vista and Server 2008 |
| Recommended Actions | Refer to the vendor's web site for suggested workaround.
http://www.microsoft.com/technet/security/advisory/975497.mspx |
| Common Vulnerabilities and Exposures (CVE) | http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-3103
|
| Reference/s | http://www.microsoft.com/technet/security/advisory/975497.mspx
http://www.milw0rm.com/exploits/9594
|