Oval Definition:oval:org.mitre.oval:def:5595
Revision Date:2014-08-18Version:22
Title:SMBv2 Infinite Loop Vulnerability
Description:Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 do not properly validate fields in SMBv2 packets, which allows remote attackers to cause a denial of service (infinite loop and system hang) via a crafted packet to the Server service, aka "SMBv2 Infinite Loop Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-2526
Platform(s):Microsoft Windows Server 2008
Microsoft Windows Vista
Product(s):SMBv2
Definition Synopsis
  • Windows Vista x86/x64
  • Vista x86/x64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • AND the version of srv2.sys is greater than or equal 6.0.6000.16000
  • AND the version of srv2.sys is less than 6.0.6000.16927
  • OR Windows Vista x86/x64
  • Vista x86/x64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • AND the version of srv2.sys is greater than or equal 6.0.6000.20000
  • AND the version of srv2.sys is less than 6.0.6000.21127
  • OR Windows Vista x86/x64, Windows Server 2008 x86/x64/ia64
  • Vista x86/x64/Server 2008 x86/x64/ia64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of srv2.sys is greater than or equal 6.0.6001.18000
  • AND the version of srv2.sys is less than 6.0.6001.18331
  • OR Windows Vista x86/x64, Windows Server 2008 x86/x64/ia64
  • Vista x86/x64/Server 2008 x86/x64/ia64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of srv2.sys is greater than or equal 6.0.6001.22000
  • AND the version of srv2.sys is less than 6.0.6001.22522
  • OR Windows Vista x86/x64, Windows Server 2008 x86/x64/ia64
  • Vista x86/x64, Server 2008 x86/x64/ia64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of srv2.sys is greater than or equal 6.0.6002.18000
  • AND the version of srv2.sys is less than 6.0.6002.18112
  • OR Windows Vista x86/x64, Windows Server 2008 x86/x64/ia64
  • Vista x86/x64, Server 2008 x86/x64/ia64
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of srv2.sys is greater than or equal 6.0.6002.22000
  • AND the version of srv2.sys is less than 6.0.6002.22225
  • BACK