SMB: Microsoft Distributed File System (DFS) Deferral Response Overflow
This signature detects attempts to exploit a known vulnerability in Microsoft Distributed File System (DFS). A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.
Extended Description
Microsoft Windows is prone to a remote code-execution vulnerability. The issue affects the Windows Distributed File System (DFS). An attacker can exploit this issue by sending a specially crafted DFS response to the affected application. Successfully exploiting this issue allows an attacker to execute arbitrary code in the context of the application, which may aid the attacker in taking complete control of an affected system.
Affected Products
Avaya messaging_application_server,Avaya meeting_exchange
Short Name
SMB:OF:DFS-RESP
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SMB
Keywords
(DFS) CVE-2011-1868 CVE-2011-1869 Deferral Distributed File Microsoft Overflow Response System bid:48180
Release Date
06/13/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Avaya
Microsoft
CVSS Score
10.0
7.8