CVE-2009-2532

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue is related to the improper processing of the command value in an SMB Multi-Protocol Negotiate Request packet, which allows remote attackers to execute arbitrary code via a crafted SMBv2 packet to the Server service. This is due to errors in code generation management. An unauthenticated remote code execution exists in the way that Microsoft Server Message Block (SMB) Protocol software handles specially crafted SMB packets. An attacker who successfully exploits this issue could take complete control of the system.

Recommendations For Microsoft Windows versions prior to the fixed version, update to the latest version to resolve the issue. As a temporary workaround, consider restricting access to the Server service to minimize the risk of exploitation. Avoid using the SMBv2 protocol in the affected systems until the issue is resolved.