Oval Definition:	oval:org.mitre.oval:def:2060
Revision Date: 2011-05-16 Version: 23 Title: SMB Invalid Handle Vulnerability (WinS03) Description: The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-2374 Platform(s): Microsoft Windows Server 2003 Product(s): Definition Synopsis Windows Server 2003 is installed AND NOT Win2K/XP/2003 is patched AND the version of mrxsmb.sys is less than 5.2.3790.529
BACK