Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does not properly handle (1) SMBv1 and (2) SMBv2 response packets, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted packet that causes the client to read the entirety of the response, and then improperly interact with the Winsock Kernel (WSK), aka "SMB Client Message Size Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows SMB客户端远程代码执行漏洞
Vulnerability Description
Microsoft Windows是微软发布的非常流行的WEB浏览器。 Microsoft Windows SMB客户端存在远程代码执行漏洞。Microsoft Windows Server 2008 R2和Windows 7的SMB客户端无法正确处理(1)SMBv1和(2)SMBv2响应包,远程SMB服务器和中间人攻击者可以通过特制的包执行任意代码,引发客户端读取全部响应,然后与Winsock内核(WSK)进行不正常交互,即'SMB客户端报文尺寸漏洞'。
CVSS Information
N/A
Vulnerability Type
N/A