CVE-2009-3103

🗓️ 08 Sep 2009 22:00:00Reported by microsoftType

Array index error in SMBv2 protocol srv2.sys in Windows allows remote code execution or denial of service via Process ID High header field, aka "SMBv2 Negotiation Vulnerability.

Reporter	Title	Published	Views	Family All 43
0day.today	Microsoft Windows - 'srv2.sys' SMB Code Execution (Python) (MS09-050) Exploit	26 Feb 201600:00	–	zdt
GithubExploit	Exploit for CVE-2009-3103	26 Jan 202607:13	–	githubexploit
BDU FSTEC	The vulnerability of the SMBv2 component of the Windows operating system allows a perpetrator to execute arbitrary code or cause a service failure.	7 Sep 202100:00	–	bdu_fstec
Circl	CVE-2009-3103	9 Sep 200900:00	–	circl
Check Point Advisories	Microsoft Windows Server Remote Code Execution (CVE-2009-3103)	30 May 202100:00	–	checkpoint_advisories
Check Point Advisories	Microsoft Windows SMB Negotiate Request Remote Code Execution (CVE-2009-2532; CVE-2009-3103)	9 Sep 200900:00	–	checkpoint_advisories
CVE	CVE-2009-3103	8 Sep 200922:00	–	cve
Exploit DB	Microsoft Windows - 'srv2.sys' SMB Negotiate ProcessID Function Table Dereference (MS09-050) (Metasploit)	3 Jul 201000:00	–	exploitdb
Metasploit	Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference	15 Apr 201016:08	–	metasploit
Metasploit	Microsoft SRV2.SYS SMB2 Logoff Remote Kernel NULL Pointer Dereference	15 Apr 201016:08	–	metasploit

Source	Link
isc	www.isc.sans.org/diary.html
osvdb	www.osvdb.org/57799
securityfocus	www.securityfocus.com/archive/1/506300/100/0/threaded
reversemode	www.reversemode.com/index.php
securitytracker	www.securitytracker.com/id
secunia	www.secunia.com/advisories/36623
securityfocus	www.securityfocus.com/archive/1/506327/100/0/threaded
exploit-db	www.exploit-db.com/exploits/9594
securityfocus	www.securityfocus.com/bid/36299
g-laurent	www.g-laurent.blogspot.com/2009/09/windows-vista7-smb20-negotiate-protocol.html