Oval Definition:oval:org.mitre.oval:def:1850
Revision Date:2011-05-16Version:23
Title:SMB Invalid Handle Vulnerability (Win2K)
Description:The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-2374
Platform(s):Microsoft Windows 2000
Product(s):
Definition Synopsis
  • Windows 2000 Service Pack 4 (or later) is installed
  • Windows 2000 is installed
  • AND Win2K/XP/2003 service pack 4 (or later) is installed
  • AND the version of mrxsmb.sys is less than 5.0.2195.7097
  • BACK