CVE-2010-0477

2010-04-1416:00:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2010-0477

smb client

microsoft windows

server 2008 r2

windows 7

smbv1

smbv2

remote attackers

arbitrary code

crafted packets

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.937 High

EPSS

Percentile

99.1%

JSON

The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does not properly handle (1) SMBv1 and (2) SMBv2 response packets, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted packet that causes the client to read the entirety of the response, and then improperly interact with the Winsock Kernel (WSK), aka “SMB Client Message Size Vulnerability.”

CPENameOperatorVersion
microsoft:windows_7microsoft windows 7eq-
microsoft:windows_7microsoft windows 7eq*
microsoft:windows_server_2008microsoft windows server 2008eq*