CVE-2008-4038

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008

Description A buffer underflow issue exists in the Server Message Block (SMB) protocol, allowing remote attackers to execute arbitrary code via a crafted filename in an SMB request. The vulnerability can be exploited when the share type is a disk, which by default requires authentication. Successful exploitation could allow an attacker to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows 2000 SP4, update to a newer version to mitigate the risk. For Microsoft Windows XP SP2 and SP3, update to a newer version to mitigate the risk. For Microsoft Windows Server 2003 SP1 and SP2, update to a newer version to mitigate the risk. For Microsoft Windows Vista Gold and SP1, update to a newer version to mitigate the risk. For Microsoft Windows Server 2008, update to a newer version to mitigate the risk. As a temporary workaround, consider restricting access to disk shares to minimize the risk of exploitation.