Home News Security Avaya Enterprise (Fomerly Nortel Enterprise) Response to Microsoft Security Bulletin MS10-006
Avaya Enterprise (Fomerly Nortel Enterprise) Response to Microsoft Security Bulletin MS10-006 PDF Print E-mail
Wednesday, 17 February 2010 03:31
On Tuesday, February 9th, Microsoft released security update MS10-006 - Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251). This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit these vulnerabilities, an attacker must convince the user to initiate an SMB connection to a malicious SMB server. Microsoft ratings for MS10-006: Maximum Severity Rating - Critical Impact of Vulnerability - Remote Code Execution MS10-006 addresses the following CVE: SMB Client Pool Corruption Vulnerability - CVE-2010-0016 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0016 An unauthenticated remote code execution vulnerability exists in the way that Microsoft Server Message Block (SMB) Protocol software handles specially crafted SMB responses. An attempt to exploit the vulnerability would not require authentication, allowing an attacker to exploit the vulnerability by sending a specially crafted SMB response to a client-initiated SMB request. An attacker who successfully exploited this vulnerability could take complete control of the system. SMB Client Race Condition Vulnerability - CVE-2010-0017 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0017 An unauthenticated remote code execution vulnerability exists in the way that Microsoft Server Message Block (SMB) Protocol software handles specially crafted SMB packets. An attempt to exploit the vulnerability would not require authentication, allowing an attacker to exploit the vulnerability by sending a specially crafted SMB response to client-initiated SMB request. An attacker who successfully exploited this vulnerability could take complete control of the system. On Windows Vista and Windows Server 2008, this vulnerability could result in an elevation of privilege vulnerability due to the way t
Source : http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=994097&poid=  
< Prev   Next >
 
click here