SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (Microsoft)  >   Windows Server Message Block Vendors:   Microsoft
Windows Server Message Block Lets Remote Authenticated Users Execute Arbitrary Code on the Target System
SecurityTracker Alert ID:  1036803
SecurityTracker URL:  http://securitytracker.com/id/1036803
CVE Reference:   CVE-2016-3345   (Links to External Site)
Date:  Sep 14 2016
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): Vista SP2, 2008 SP2, 7 SP1, 2008 R2 SP1, 8.1, 2012, 2012 R2, RT 8.1, 10, 10 Version 1511, 10 Version 1607; and prior service packs
Description:   A vulnerability was reported in Windows Server Message Block. A remote authenticated user can execute arbitrary code on the target system.

A remote authenticated user can send specially crafted data to execute arbitrary code on the target SMBv1 server (for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2) or cause the target SMBv1 server to stop responding.

A manual restart is required to return the system to normal operations.

Impact:   A remote authenticated user can execute arbitrary code on the target system.
Solution:   The vendor has issued a fix.

Windows Vista Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=f6c97580-0371-40e4-baa0-ee0b08568210

Windows Vista x64 Edition Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=f694edbd-f71b-4d18-b5ae-ef65bfefd5f9

Windows Server 2008 for 32-bit Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=fbe895de-1548-483d-8e48-1d106e953082

Windows Server 2008 for x64-based Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=a1a3bd7e-35a8-466d-ba1c-5dc2c1f15252

Windows Server 2008 for Itanium-based Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=d9f05505-d358-4c99-a6c9-af82010ac6a3

Windows 7 for 32-bit Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=2fc5b497-1cd6-4195-8e2b-fec332f53f4d

Windows 7 for x64-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=a1758d07-f328-4584-a87d-15448228fa14

Windows Server 2008 R2 for x64-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=9106042a-8936-4e8a-bb35-572c0198e45b

Windows Server 2008 R2 for Itanium-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=bbf1d6ba-e30f-41a8-ad72-bf004014a47f

Windows 8.1 for 32-bit Systems:

https://www.microsoft.com/downloads/details.aspx?familyid=76cde9cc-1368-478a-b521-4cde9924cc17

Windows 8.1 for x64-based Systems:

https://www.microsoft.com/downloads/details.aspx?familyid=98e89316-e871-42d6-84d3-13e57ca10cc9

Windows Server 2012:

https://www.microsoft.com/downloads/details.aspx?familyid=f6370a66-2bfe-463e-88a2-3ce5dbaa4147

Windows Server 2012 R2:

https://www.microsoft.com/downloads/details.aspx?familyid=361d7558-bd41-4078-94b0-004a07d9528b

Windows Server 2008 for 32-bit Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=fbe895de-1548-483d-8e48-1d106e953082

Windows Server 2008 for x64-based Systems Service Pack 2:

https://www.microsoft.com/downloads/details.aspx?familyid=a1a3bd7e-35a8-466d-ba1c-5dc2c1f15252

Windows Server 2008 R2 for x64-based Systems Service Pack 1:

https://www.microsoft.com/downloads/details.aspx?familyid=a1a3bd7e-35a8-466d-ba1c-5dc2c1f15252

Windows Server 2012:

https://www.microsoft.com/downloads/details.aspx?familyid=f6370a66-2bfe-463e-88a2-3ce5dbaa4147

Windows Server 2012 R2:

https://www.microsoft.com/downloads/details.aspx?familyid=361d7558-bd41-4078-94b0-004a07d9528b

Additional patch information is available in the vendor advisory.

The Microsoft advisory is available at:

https://technet.microsoft.com/library/security/ms16-114

Vendor URL:  technet.microsoft.com/library/security/ms16-114 (Links to External Site)
Cause:   Not specified

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC