Todd Wease

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through R2 Microsoft Windows 7 (affected versions not specified) **Description** A denial of service issue exists due to the way the Server Message Block (SMB) Protocol software handles specially crafted SMB compounded requests. This can be exploited by sending a specially crafted network message to a computer running the Server service, allowing remote attackers to cause a system hang. No authentication is required for an attacker to exploit this issue. **Recommendations** For Microsoft Windows Vista versions SP1 through SP2, apply the recommended patch to resolve the issue. For Microsoft Windows Server 2008 versions Gold through R2, apply the recommended patch to resolve the issue. For Microsoft Windows 7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.