SMB: Microsoft Windows Server Service SMB Rename Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft Windows Server Service. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Windows is prone to a remote denial-of-service vulnerability because the Server service fails to properly handle network messages. Exploiting this issue may cause affected computers to crash, denying service to legitimate users. To exploit this issue, an attacker must have valid logon credentials.
Affected Products
Avaya s8100_media_servers,Microsoft windows_server_2003_enterprise_edition_itanium
Short Name
SMB:EXPLOIT:SRV-RENAME-CE
Severity
Major
Recommended
False
Recommended Action
None
Category
SMB
Keywords
CVE-2006-4696 Code Execution Microsoft Rename SMB Server Service Windows bid:20373
Release Date
10/10/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3728
False Positive
Unknown
Vendors
Microsoft
Avaya
CVSS Score
9.0