Oval Definition:	oval:org.mitre.oval:def:1850
Revision Date: 2011-05-16 Version: 23 Title: SMB Invalid Handle Vulnerability (Win2K) Description: The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-2374 Platform(s): Microsoft Windows 2000 Product(s): Definition Synopsis Windows 2000 Service Pack 4 (or later) is installed Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or later) is installed AND the version of mrxsmb.sys is less than 5.0.2195.7097
BACK