Vulnerabilities in SMB Client Could Allow Remote Code Execution
Description: This security update resolves one publicly disclosed and several privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit these vulnerabilities, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. The security update addresses the vulnerabilities by correcting the manner in which the SMB client handles SMB responses, allocates memory, and validates fields within the SMB response.
Update type: Critical
Release date: April 13, 2010
Applies to: All versions
Knowledge base: http://support.microsoft.com/kb/980232
- SMB Client Incomplete Response Vulnerability – CVE-2009-3676
- SMB Client Memory Allocation Vulnerability – CVE-2010-0269
- SMB Client Transaction Vulnerability – CVE-2010-0270
- SMB Client Response Parsing Vulnerability – CVE-2010-0476
- SMB Client Message Size Vulnerability – CVE-2010-0477
For more information on this issue, including potential causes, workarounds, and resolutions, see: Microsoft KB Article KB980232.