Title: Microsoft Windows SMB Packet Remote Denial of Service Vulnerability
Severity: MODERATE
Description:
Microsoft Windows is prone to a remote denial-of-service vulnerability. Specifically, the issue occurs when a crafted SMB or SMBv2 packet containing less data than the value defined in the NetBIOS header is parsed. This causes the process to go into an infinite loop, resulting in a denial-of-service condition.
For an exploit to succeed, a remote attacker must entice an unsuspecting user to connect to a malicious SMB server.
The issue affects Windows 7 and 2008 R2.
Affected Products:
- Microsoft Windows 7
- Microsoft Windows Server 2008 R2
- Microsoft Windows Server 2008 for 32-bit Systems
- Microsoft Windows Server 2008 for 32-bit Systems SP2
- Microsoft Windows Server 2008 for Itanium-based Systems
- Microsoft Windows Server 2008 for Itanium-based Systems R2
- Microsoft Windows Server 2008 for x64-based Systems
- Microsoft Windows Server 2008 for x64-based Systems R2
References:
- CVE: CVE-2009-3676
- Microsoft: Microsoft Homepage
- Microsoft: Microsoft Security Advisory (977544)
- Microsoft: Microsoft Security Bulletin MS10-020
- Microsoft: Microsoft Windows 7 Homepage
- Microsoft: Windows Server 2008 Product Page
- Microsoft Security Response Center: Microsoft Security Advisory 977544 Released
- Secunia: SA37347 / CVE-2009-3676
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
