Back to search
CVE-2011-0661
Published: Apr 13, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
The SMB Server service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate fields in SMB requests, which allows remote attackers to execute arbitrary code via a malformed request in a (1) SMBv1 or (2) SMBv2 packet, aka "SMB Transaction Parsing Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
44072
third-party-advisory
x_refsource_SECUNIA
71781
vdb-entry
x_refsource_OSVDB
TA11-102A
third-party-advisory
x_refsource_CERT
1025329
vdb-entry
x_refsource_SECTRACK
ADV-2011-0939
vdb-entry
x_refsource_VUPEN
47198
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:12076
vdb-entry
signature
x_refsource_OVAL
MS11-020
vendor-advisory
x_refsource_MS
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now