McAfee > Theat Center > Vulnerability Detail Page

Timeline

1/13/2009

Vendor has provided a patch.

Description

A vulnerability in Microsoft Windows which may allow for remote code execution. The flaw is specific to the method in which the SMB (Microsoft Server Message Block) protocol handles specially-crafted SMB packets. A remote attacker can potentially exploit this vulnerability by sending specially-crafted messages/packets to a vulnerable target.

McAfee Product Mitigation & Recommendations

Recommendations

The vendor has released a patch to address this vulnerability: http://www.microsoft.com/technet/security/bulletin/ms09-001.mspx

McAfee Product Mitigation

McAfee Foundstone

Signature:

(MS08-0XX) SMB Validation Remote Code Execution Vulnerability (958687)

Signature identifier:

6375

Release date:

1/13/2009

Additional Resources

Vulnerabilities in SMB Could Allow Remote Code Execution (958687)

http://www.microsoft.com/technet/security/bulletin/ms09-001.mspx

All Information

Timeline -

1/13/2009

Vendor has provided a patch.

Description -

A vulnerability in Microsoft Windows which may allow for remote code execution. The flaw is specific to the method in which the SMB (Microsoft Server Message Block) protocol handles specially-crafted SMB packets. A remote attacker can potentially exploit this vulnerability by sending specially-crafted messages/packets to a vulnerable target.

McAfee Product Mitigation & Recommendations

Recommendations -

The vendor has released a patch to address this vulnerability: http://www.microsoft.com/technet/security/bulletin/ms09-001.mspx

McAfee Product Mitigation

McAfee Foundstone

Signature:

(MS08-0XX) SMB Validation Remote Code Execution Vulnerability (958687)

Signature identifier:

6375

Release date:

1/13/2009

Additional Resources

Additional Resources -

Vulnerabilities in SMB Could Allow Remote Code Execution (958687)

http://www.microsoft.com/technet/security/bulletin/ms09-001.mspx