QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2009-3103

Back to search

CVE-2009-3103

Published: Sep 8, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via an & (ampersand) character in a Process ID High header field in a NEGOTIATE PROTOCOL REQUEST packet, which triggers an attempted dereference of an out-of-bounds memory location, aka "SMBv2 Negotiation Vulnerability." NOTE: some of these details are obtained from third party information.

VendorProductVersions

n/a

n/a

affected
n/a

References

36299
vdb-entry
x_refsource_BID
VU#135940
third-party-advisory
x_refsource_CERT-VN
MS09-050
vendor-advisory
x_refsource_MS
TA09-286A
third-party-advisory
x_refsource_CERT
36623
third-party-advisory
x_refsource_SECUNIA
1022848
vdb-entry
x_refsource_SECTRACK
20090909 SMB SRV2.SYS Denial of Service PoC
mailing-list
x_refsource_BUGTRAQ
9594
exploit
x_refsource_EXPLOIT-DB
57799
vdb-entry
x_refsource_OSVDB
win-srv2sys-code-execution(53090)
vdb-entry
x_refsource_XF
oval:org.mitre.oval:def:6489
vdb-entry
signature
x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2009-3103 - Security Vulnerability | QwikSec