CVE-2010-0016

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Microsoft Windows 2000 SP4 Microsoft Windows XP SP2 and SP3 Microsoft Windows Server 2003 SP2

Description The issue arises from the improper validation of response fields by the SMB client implementation, allowing remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted response. An unauthenticated remote code execution vulnerability exists in the way that Microsoft Server Message Block (SMB) Protocol software handles specially crafted SMB responses. This could allow an attacker to take complete control of the system by sending a specially crafted SMB response to a client-initiated SMB request.

Recommendations For Microsoft Windows 2000 SP4, update to a version that includes the fix for this issue. For Microsoft Windows XP SP2 and SP3, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003 SP2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to SMB services until a patch is available.