Microsoft Windows Server Message Block Vulnerability

Wednesday, June 15 2005 @ 07:34 AM EDT

A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to insufficient validation of incoming Server Message Block (SMB) packets and can be exploited by sending a specially crafted SMB packet to a vulnerable system.

OPERATING SYSTEM:
Microsoft Windows XP Professional
Microsoft Windows XP Home Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows 2000 Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server

SOLUTION:
Apply patches.

Microsoft Windows 2000 (requires Service Pack 3 or 4):
http://www.microsoft.com/downloads/details.aspx?FamilyId=1E83F120-01FB-4029-A524-F3AE08F8BB28

Microsoft Windows XP (requires Service Pack 1 or 2):
http://www.microsoft.com/downloads/details.aspx?FamilyId=9CC719AD-5E57-4AEF-9FB3-9F7AB7BB5D32

Microsoft Windows XP 64-Bit Edition (requires Service Pack 1)
(Itanium):
http://www.microsoft.com/downloads/details.aspx?FamilyId=B3A61221-0DAC-452C-87E9-3362DD97273A

Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium):
http://www.microsoft.com/downloads/details.aspx?FamilyId=7D97522F-F322-44D4-9E60-BDFED4A7A079

Microsoft Windows XP Professional x64 Edition:
http://www.microsoft.com/downloads/details.aspx?FamilyId=716B9CDE-5EF1-4005-903F-FC720863F03C

Microsoft Windows Server 2003 (with or without Service Pack 1):
http://www.microsoft.com/downloads/details.aspx?FamilyId=3EA61158-E7C5-49A8-A701-B16AAF83A188

Microsoft Windows Server 2003 (with or without Service Pack 1)
(Itanium):
http://www.microsoft.com/downloads/details.aspx?FamilyId=7D97522F-F322-44D4-9E60-BDFED4A7A079

Microsoft Windows Server 2003 x64 Edition:
http://www.microsoft.com/downloads/details.aspx?FamilyId=B455A686-EFF2-44D7-BAFA-AC73F0F68FB1

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Qualys.

ORIGINAL ADVISORY:
MS05-027 (KB896422):
http://www.microsoft.com/technet/security/Bulletin/MS05-027.mspx

VERIFY ADVISORY:
http://secunia.com/advisories/15694/

Secunia Security Advisories

0 comments


http://community.securityteam.us/article.php/20050615073452568