CVE-2008-4835

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4 through 2000 SP4, XP SP2 through XP SP3, Server 2003 SP1 through Server 2003 SP2, Vista Gold through Vista SP1, and Server 2008

Description The issue allows remote attackers to execute arbitrary code via malformed values of unspecified fields inside the SMB packets in an NT Trans2 request, related to insufficiently validating the buffer size. An unauthenticated remote code execution vulnerability exists in the way that Microsoft Server Message Block (SMB) Protocol software handles specially crafted SMB packets. An attempt to exploit the vulnerability would not require authentication, allowing an attacker to exploit the vulnerability by sending a specially crafted network message to a computer running the Server service. An attacker who successfully exploited this vulnerability could cause the attacker to take complete control of the system. Most attempts to exploit this vulnerability would result in a system denial of service condition, however remote code execution is theoretically possible.

Recommendations For Microsoft Windows 2000 SP4, update to a newer version to mitigate the risk. For Microsoft Windows XP SP2 and SP3, update to a newer version to mitigate the risk. For Microsoft Windows Server 2003 SP1 and SP2, update to a newer version to mitigate the risk. For Microsoft Windows Vista Gold and SP1, update to a newer version to mitigate the risk. For Microsoft Windows Server 2008, update to a newer version to mitigate the risk. As a temporary workaround, consider restricting access to the Server service until a patch is available.