CVE-2009-3676

Description

The SMB client in the kernel in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to cause a denial of service (infinite loop and system hang) via a (1) SMBv1 or (2) SMBv2 response packet that contains (a) an incorrect length value in a NetBIOS header or (b) an additional length field at the end of this response packet, aka "SMB Client Incomplete Response Vulnerability."

Related CPE's

omicrosoftwindows_server_2008r2*******

omicrosoftwindows_7********

References

20091111 Windows 7 , Server 2008R2 Remote Kernel Crash

Exploit

http://g-laurent.blogspot.com/2009/11/windows-7-server-2008r2-remote-kernel.html

Exploit

ADV-2009-3216

Vendor Advisory

http://praetorianprefect.com/archives/2009/11/how-to-crash-windows-7-and-server-2008/

Exploit

http://news.cnet.com/8301-27080_3-10395891-245.html

http://www.microsoft.com/technet/security/advisory/977544.mspx

PatchVendor Advisory

http://blogs.technet.com/msrc/archive/2009/11/13/microsoft-security-advisory-977544-released.aspx

37347

Vendor Advisory

http://secunia.com/blog/66/

Vendor Advisory

1023179

TA10-103A

US Government Resource

oval:org.mitre.oval:def:7186

MS10-020

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:M/Au:N/C:N/I:N/A:C

AccessVector

NETWORK

AccessComplexity

MEDIUM

Authentication

NONE

ConfidentialityImpact

NONE

IntegrityImpact

NONE

AvailabilityImpact

COMPLETE

BaseScore

7.099999904632568

Created by Yello
About Severity.io