CVE-2008-4114

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008

Description A denial of service issue exists due to insufficient validation of buffer sizes in the Server service, allowing remote attackers to cause a system crash or possibly have other impacts via an SMB WRITE ANDX packet with an inconsistent offset and packet size. This can be demonstrated by a request to the PIPElsarpc named pipe. An attacker can exploit this issue by sending a specially crafted network message to a computer running the Server service, potentially causing the computer to stop responding and restart.

Recommendations For Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, consider applying configuration changes to restrict access to the Server service until a patch is available. As a temporary workaround, consider disabling the srv.sys driver in the Server service to minimize the risk of exploitation. Restrict access to the PIPElsarpc named pipe to prevent potential attacks via specially crafted SMB packets.