Follow:

Vulnerability:Win/SMBv2.DFS.DoS!CVE-2009-2526

Severity rating
Important

Class/Type
Vulnerability

Discovered date
2009-10-13T00:00:00

Attack vector
Remote

Authentication required
No

Public exploits available
No

Signature detection
High



On this page




Description

There is a remote unauthenticated vulnerability in SMBv2 that can lead to a CPU exhaustion on the host and force a reboot.



Impact

There is a remote unauthenticated vulnerability in SMBv2 that can lead to a CPU exhaustion on the host and force a reboot.



Technical details (analysis)

The vulnerability occurs when SMBv2 gets a certain type of DFS packet with a very long data buffer and incorrectly parses it.



Affected software

SMBv2



Non-affected software

All applications not on the affected list.



References




Solutions




NIS signature

Name: Vulnerability:Win/SMBv2.DFS.DoS!CVE-2009-2526
Release Date: 2009-10-13T00:00:00



Known false positives

No known false positives at this time.



Work-arounds

No known work-arounds at this time.