Microsoft Windows SMB Driver Out of Bounds Read (CVE-2020-1284)

An out of bound memory read issue has been identified in SMB driver. A remote attacker could exploit the vulnerability by sending a crafted request...

CVE-2006-3942

The server driver srv.sys in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service system crash via an SMBCOMTRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the...

Privilege escalation

The Server Message Block SMB driver MRXSMB.SYS in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to execute arbitrary code by calling the MrxSmbCscIoctlOpenForCopyChunk function with the METHODNEITHER method flag and an arbitrary address, possibly f...

CVE-2006-2373

The Server Message Block SMB driver MRXSMB.SYS in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to execute arbitrary code by calling the MrxSmbCscIoctlOpenForCopyChunk function with the METHODNEITHER method flag and an arbitrary address, possibly f...

CVE-2006-2374

The Server Message Block SMB driver MRXSMB.SYS in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service hang by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock,...

CVE-2006-2374

CVE-2006-2374 (SMB Invalid Handle Vulnerability) affects Windows 2000 SP4, XP SP1/SP2, and Server 2003 SP1 and earlier. The issue is a DoS in MRXSMB.SYS caused by a logic/error in MrxSmbCscIoctlCloseForCopyChunk when given a shadow-device file handle, potentially freezing the system (deadlock). T...

CVE-2006-2373

CVE-2006-2373 : A local elevation-of-privilege in the SMB driver MRXSMB.SYS on affected Windows versions (Windows 2000 SP4, XP SP1/SP2, Server 2003 SP1 and earlier). The vulnerability arises from a logic/validation error in MRxSmbCscIoctlOpenForCopyChunk where, when invoked with METHOD_NEITHER, a...

Microsoft SMB Driver Local Denial Of Service Vulnerability

Description The Microsoft SMB driver is prone to a local denial-of-service vulnerability. A local attacker can exploit this issue to create processes that cannot be killed in affected operating systems, potentially denying service to legitimate users and other software on affected computers. This...

Microsoft Windows SMB Driver Local Privilege Escalation Vulnerability

Description The Microsoft SMB driver is susceptible to a local privilege-escalation vulnerability. This issue is due to a failure of the affected software to properly bounds-check user-supplied input prior to copying it to insufficiently-sized kernel memory. A local attacker can exploit this issu...

Microsoft SMB Driver - Local Denial of Service

Microsoft SMB Driver - Local Denial of Service // source: https://www.securityfocus.com/bid/18357/info The Microsoft SMB driver is prone to a local denial-of-service vulnerability. A local attacker can exploit this issue to create processes that cannot be killed in affected operating systems,...

USN-60-0: Linux kernel vulnerabilities

CAN-2005-0001: Paul Starzetz discovered a race condition in the Linux page fault handler code. This allowed an unprivileged user to gain root privileges on multiprocessor machines under some circumstances. This also affects the Hyper-Threading mode on Pentium 4 processors...