Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-0269
HistoryApr 14, 2010 - 4:00 p.m.

CVE-2010-0269

2010-04-1416:00:00
CWE-399
[email protected]
web.nvd.nist.gov
61
cve-2010-0269
smb client
memory allocation
microsoft windows
vulnerability
nvd
smbv1
smbv2
remote code execution
man-in-the-middle attack

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.053 Low

EPSS

Percentile

93.0%

JSON

The SMB client in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly allocate memory for SMB responses, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted (1) SMBv1 or (2) SMBv2 response, aka “SMB Client Memory Allocation Vulnerability.”

Related

checkpoint_advisories 1
prion 1
securityvulns 2
openvas 2
nessus 2
checkpoint_advisories
checkpoint_advisories
Microsoft SMB Client Memory Allocation Memory Corruption (MS10-020; CVE-2010-0269)
2010-04-13 00:00:00
prion
prion
Memory corruption
2010-04-14 16:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS10-020 - Critical Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232)
2010-04-15 00:00:00
Microsoft SMB client multiple security vulnerabilities
2010-04-15 00:00:00
openvas
openvas
Microsoft SMB Client Remote Code Execution Vulnerabilities (980232)
2010-04-14 00:00:00
Microsoft SMB Client Remote Code Execution Vulnerabilities (980232)
2010-04-14 00:00:00
nessus
nessus
MS10-020: Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232)
2010-04-13 00:00:00
Windows Server 2008 Critical RCE Vulnerabilities (uncredentialed) (PCI/DSS)
2018-04-03 00:00:00

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.053 Low

EPSS

Percentile

93.0%

JSON
Related for CVE-2010-0269
checkpoint_advisories1prion1securityvulns2openvas2nessus2