CVE-2009-2532

Metadata

CVE-2009-2532
10.0
microsoft.com, us-cert.gov
2009-10-14
2017-09-21 21:08

Description

Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC do not properly process the command value in an SMB Multi-Protocol Negotiate Request packet, which allows remote attackers to execute arbitrary code via a crafted SMBv2 packet to the Server service, aka "SMBv2 Command Value Vulnerability."

Related Vulnerabilities