CVE-2009-3676

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2008 R2 Microsoft Windows 7

Description A denial of service issue exists in the Microsoft Server Message Block (SMB) client implementation, allowing remote SMB servers and man-in-the-middle attackers to cause a system hang via a specially crafted SMB response packet. This can be achieved by sending an SMBv1 or SMBv2 response packet with an incorrect length value in a NetBIOS header or an additional length field at the end of the response packet. An attempt to exploit this issue does not require authentication, and a successful exploitation could cause the computer to stop responding until restarted.

Recommendations For Microsoft Windows Server 2008 R2, apply the necessary patch to fix the SMB client implementation. For Microsoft Windows 7, apply the necessary patch to fix the SMB client implementation. As a temporary workaround, consider restricting access to SMB services until a patch is available.