Microsoft Windows Server Message Block Protocol Remote Denial of Service Vulnerability

Technical Description



A vulnerability has been identified in Microsoft Windows, which couldbe exploited by remote attackers to cause a denial of service. Thisflaw is due to NULL pointer dereference error in the server driver(srv.sys) when handling specially crafted SMB (Server Message Block)packets, which could be exploited by remote unauthenticated attackersto cause a vulnerable system to crash and display a blue screen,creating a denial of service condition.



Note : A fully functional exploit has been published.



Affected Products



Microsoft Windows 2000 Service Pack 4

Microsoft Windows XP Service Pack 1

Microsoft Windows XP Service Pack 2

Microsoft Windows XP Professional x64 Edition

Microsoft Windows Server 2003

Microsoft Windows Server 2003 Service Pack 1

Microsoft Windows Server 2003 (Itanium)

Microsoft Windows Server 2003 SP1 (Itanium)

Microsoft Windows Server 2003 x64 Edition