Description: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit these vulnerabilities, an attacker must convince the user to initiate an SMB connection to a malicious SMB server.The security update addresses the vulnerabilities by correcting the manner in which the SMB client validates responses.
Update type: Important
Release date: February 9, 2010
Applies to: All versions
Knowledge base: http://support.microsoft.com/kb/978251