Oval Definition:oval:org.mitre.oval:def:2060
Revision Date:2011-05-16Version:23
Title:SMB Invalid Handle Vulnerability (WinS03)
Description:The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-2374
Platform(s):Microsoft Windows Server 2003
Product(s):
Definition Synopsis
  • Windows Server 2003 is installed
  • AND NOT Win2K/XP/2003 is patched
  • AND the version of mrxsmb.sys is less than 5.2.3790.529
  • BACK