4 matches found
Microsoft Windows SMB2 Negotiation Protocol RCE Vulnerability
This host is missing a critical security update according to Microsoft Bulletin MS09-050. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2009-2532
CVE-2009-2532 refers to a remote-code-execution vulnerability in the SMBv2 implementation of Windows SMB Server. The issue arises from how SMBv2 handles the command value in SMB Multi-Protocol Negotiate packets, allowing an unauthenticated attacker to execute arbitrary code on affected systems. A...
MS09-050: Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517) (EDUCATEDSCHOLAR)
The remote Windows host contains a vulnerable SMBv2 implementation with the following issues : - A specially crafted SMBv2 packet can cause an infinite loop in the Server service. A remote, unauthenticated attacker can exploit this to cause a denial of service. CVE-2009-2526 - Sending a specially...
MS09-050: Microsoft Windows SMB2 _Smb2ValidateProviderCallback() Vulnerability (975497) (EDUCATEDSCHOLAR) (uncredentialed check)
The remote host is running a version of Microsoft Windows Vista or Windows Server 2008 that contains a vulnerability in its SMBv2 implementation. An attacker can exploit this flaw to disable the remote host or to execute arbitrary code on it. EDUCATEDSCHOLAR is one of multiple Equation Group...