CVE-2010-0270

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2008 R2 Microsoft Windows 7

Description The issue arises from the improper validation of fields in SMB transaction responses by the SMB client, allowing remote SMB servers and man-in-the-middle attackers to execute arbitrary code or cause a denial of service. This can result in memory corruption and system reboot. The vulnerability can be exploited via crafted SMBv1 or SMBv2 responses. An unauthenticated remote code execution vulnerability exists in the Microsoft Server Message Block (SMB) client implementation, enabling an attacker to send a specially crafted SMB response to a client-initiated SMB request and potentially take complete control of the system.

Recommendations For Microsoft Windows Server 2008 R2, apply the necessary patch to fix the SMB Client Transaction Vulnerability. For Microsoft Windows 7, apply the necessary patch to fix the SMB Client Transaction Vulnerability. As a temporary workaround, consider restricting SMB traffic to minimize the risk of exploitation.