F-Secure
Tools
Vulnerabilities in Microsoft Server Message Block (SMB)
| Report ID: | SA201006494 |
| Source: | F-Secure |
| Date of Discovery: | 10.08.2010 |
| Criticality: | Critical |
| Affects: | Windows XP Windows Server 2003 Windows Vista Windows Server 2008 Windows 7 Windows Server 2008 R2 |
| Compromise From: | From remote |
| Compromise Type: | Remote code execution System access |
Summary
Several vulnerabilities in the Microsoft Server Message Block (SMB) Protocol software handles specially crafted SMB packets and requests could, if successfully exploited, allow remote code execution.
Detailed Description
The vulnerabilities do not require authentication, allowing an attacker to exploit them by sending specially crafted network messages to a target system running the Server service. In the most extreme case, an attacker may be able to take complete control of the affected system.
Solution
Apply security updates:
Windows XP Service Pack 3
Security Update for Windows XP
Windows XP Professional x64 Edition Service Pack 2
Security Update for Windows XP x64 Edition
Windows Server 2003 Service Pack 2
Security Update for Windows Server 2003
Windows Server 2003 x64 Edition Service Pack 2
Security Update for Windows Server 2003 x64 Edition
Windows Server 2003 with SP2 for Itanium-based Systems
Security Update for Windows Server 2003 for Itanium-based Systems
Windows Vista Service Pack 1 and Windows Vista Service Pack 2
Security Update for Windows Vista
Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
Security Update for Windows Vista for x64-based Systems
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2*
Security Update for Windows Server 2008
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2*
Security Update for Windows Server 2008 x64 Edition
Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
Security Update for Windows Server 2008 for Itanium-based Systems
Windows 7 for 32-bit Systems
Security Update for Windows 7
Windows 7 for x64-based Systems
Security Update for Windows 7 for x64-based Systems
Windows Server 2008 R2 for x64-based Systems*
Security Update for Windows Server 2008 R2 x64 Edition
Windows Server 2008 R2 for Itanium-based Systems
Security Update for Windows Server 2008 R2 for Itanium-based Systems
*Server Core installation affected.
Security Update for Windows XP
Windows XP Professional x64 Edition Service Pack 2
Security Update for Windows XP x64 Edition
Windows Server 2003 Service Pack 2
Security Update for Windows Server 2003
Windows Server 2003 x64 Edition Service Pack 2
Security Update for Windows Server 2003 x64 Edition
Windows Server 2003 with SP2 for Itanium-based Systems
Security Update for Windows Server 2003 for Itanium-based Systems
Windows Vista Service Pack 1 and Windows Vista Service Pack 2
Security Update for Windows Vista
Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
Security Update for Windows Vista for x64-based Systems
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2*
Security Update for Windows Server 2008
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2*
Security Update for Windows Server 2008 x64 Edition
Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
Security Update for Windows Server 2008 for Itanium-based Systems
Windows 7 for 32-bit Systems
Security Update for Windows 7
Windows 7 for x64-based Systems
Security Update for Windows 7 for x64-based Systems
Windows Server 2008 R2 for x64-based Systems*
Security Update for Windows Server 2008 R2 x64 Edition
Windows Server 2008 R2 for Itanium-based Systems
Security Update for Windows Server 2008 R2 for Itanium-based Systems
*Server Core installation affected.
Original Reference
http://www.microsoft.com/technet/security/Bulletin/MS10-054.mspx
CVE Reference
CVE-2010-2550
CVE-2010-2551
CVE-2010-2552
CVE-2010-2551
CVE-2010-2552