QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-0270

Back to search

CVE-2010-0270

Published: Apr 14, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate fields in SMB transaction responses, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and reboot) via a crafted (1) SMBv1 or (2) SMBv2 response, aka "SMB Client Transaction Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

oval:org.mitre.oval:def:7164
vdb-entry
signature
x_refsource_OVAL
39372
third-party-advisory
x_refsource_SECUNIA
MS10-020
vendor-advisory
x_refsource_MS
TA10-103A
third-party-advisory
x_refsource_CERT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now