10 matches found
CVE-2025-39929 smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix smbdirectrecvio leak in smbdnegotiate error path During tests of another unrelated patch I was able to trigger this error: Objects remaining on kmemcacheshutdown...
Microsoft Vista SP0 SMB Negotiate Protocol Denial of Service
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Vista SP0 SMB Negotiate Protocol DoS', 'Description' = %q This module exploits a flaw in Windows Vista that allows a remote...
Fuzzer SMB Negotiate Multiple Requests - Ver2
A vulnerability exists in Fuzzer:. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
VulnCheck KEV: CVE-2009-2532
Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC do not properly process the command value in an SMB Multi-Protocol Negotiate Request packet, which allows remote attackers to execute arbitrary code via a crafted SMBv2 packet to the Server service, aka...
Microsoft Windows SRV2.SYS SMB Negotiate ProcessID Function Table Dereference (MS09-050)
No description provided by source. Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference --------------------------------------------------------------------- Exploited by Piotr Bania // www.piotrbania.com Exploit for Vista SP2/SP1 only, should be reliable! Tested on: Vista sp2...
Microsoft Windows - 'srv2.sys' SMB Negotiate ProcessID Function Table Dereference (MS09-050)
Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference --------------------------------------------------------------------- Exploited by Piotr Bania // www.piotrbania.com Exploit for Vista SP2/SP1 only, should be reliable! Tested on: Vista sp2 6.0.6002.18005 Vista sp1 ultimate...
Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference
$Id: ms09050smb2negotiatefuncindex.rb 8656 2010-02-26 13:42:17Z sf $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2010-0017
Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB client implementation in Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows local...
SMB Negotiate SMB2 Dialect Corruption
This module sends a series of SMB negotiate requests that advertise a SMB2 dialect with corrupted bytes. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Negotiate SMB2 Dialect Corruption',...
MS Windows Plug-and-Play (Umpnpmgr.dll) DoS Exploit (MS05-047) (2)
Exploit for unknown platform in category dos / poc ================================================================== MS Windows Plug-and-Play Umpnpmgr.dll DoS Exploit MS05-047 2 ================================================================== // tested and approved /str0ke / Program: Denial of...