CVE-2009-2526

Metadata

CVE-2009-2526
7.8
microsoft.com, us-cert.gov
2009-10-14
2017-09-21 21:08

Description

Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 do not properly validate fields in SMBv2 packets, which allows remote attackers to cause a denial of service (infinite loop and system hang) via a crafted packet to the Server service, aka "SMBv2 Infinite Loop Vulnerability."

Related Vulnerabilities