CVE-2010-0021

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Server 2008; Windows Xp; Windows Vista; Windows 2003 Server
Vendor: CVE Published:; 10 February 2010

Summary

Multiple race conditions in the SMB implementation in the Server service in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allow remote attackers to cause a denial of service (system hang) via a crafted (1) SMBv1 or (2) SMBv2 Negotiate packet, aka "SMB Memory Corruption Vulnerability."

References

http://www.us-cert.gov/cas/techalerts/TA10-040A.html

third-party-advisoryx_refsource_CERT

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 10, 2010
Vulnerability Reserved
Dec 14, 2009

Collectors

NVD DatabaseMitre Database