Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4114

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2008-4114
Last Modified 04 Aug 2011 12:00:00
Published 16 Sep 2008 07:00:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4114

Summary

srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via an SMB WRITE_ANDX packet with an offset that is inconsistent with the packet size, related to "insufficiently validating the buffer size," as demonstrated by a request to the \PIPE\lsarpc named pipe, aka "SMB Validation Denial of Service Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Server 2003

  • Microsoft Windows Server 2008

  • Microsoft Windows Vista

  • Microsoft Windows Vista Gold

  • Microsoft Windows Vista Sp1

  • Microsoft Windows Xp


References

CERT - TA09-013A

MS - MS09-001

XF - win-writeandx-dos(45146)

VUPEN - ADV-2008-2583

MISC - http://www.vallejo.cc/proyectos/vista_SMB_write_DoS.htm

SECTRACK - 1020887

BID - 31179

BUGTRAQ - 20080914 Microsoft Windows WRITE_ANDX SMB command handling Kernel DoS

MISC - http://www.reversemode.com/index.php?option=com_content&task=view&id=54&Itemid=1

MILW0RM - 6463

SECUNIA - 31883


Last Updated: 27 May 2016 10:48:23