CVE-2008-4834

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description A buffer overflow issue exists in the Server service, allowing remote attackers to potentially execute arbitrary code via malformed values of fields inside the SMB packets in an NT Trans request. This issue can be exploited by sending specially crafted SMB packets to a computer running the Server service, potentially allowing an attacker to take complete control of the system. Most attempts to exploit this issue would result in a system denial of service condition.

Recommendations For Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.