PT-2024-8157 · Microsoft · Windows

Andrew Ruddick

Published

2024-11-12

Updated

2024-11-18

CVE-2024-43642

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified)

Description: The issue is related to the implementation of the SMB protocol in Windows operating systems, specifically involving the use of memory after it has been freed. This can be exploited by a remote attacker to cause a denial of service. A pre-authentication remote denial of service vulnerability was found in the Windows kernel SMB stack.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2024-09698

CVE-2024-43642

Affected Products

Windows

PT-2024-8157 · Microsoft · Windows

CVE-2024-43642

Weakness Enumeration

Related Identifiers

Affected Products

References · 9