Microsoft Windows SMB2 '_Smb2ValidateProviderCallback()' Remote Code Execution Vulnerability

Microsoft Windows SMB2 '_Smb2ValidateProviderCallback()' Remote Code Execution Vulnerability

References:

Acerca del BSOD de srv2.sys (Ruben Santamarta)
Microsoft Security Advisory (975497) Vulnerabilities in SMB Could Allow Remote C (Microsoft)
Microsoft Security Advisory 975497 Released (Microsoft)
Microsoft Windows 7 Homepage (Microsoft)
More explication on CVE-2009-3103 (Laurent Gaffie)
MS09-050: Exploit timeline for the SMB2 RCE vulnerability (Microsoft)
Regarding SMB2.0 Negotiate BSOD published by Laurent Gaffié (Rubén)
SMB2: 351 Packets from the Trampoline (Piotr Bania)
Update on the SMB vulnerability situation (Microsoft)
Windows Vista Homepage (Microsoft)
Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D. (Laurent Gaffié)
Regarding Microsoft srv2.sys SMB2.0 NEGOTIATE BSOD (Reversemode )
SMB SRV2.SYS Denial of Service PoC (igottabug@sogetthis.com)
Microsoft Security Bulletin MS09-050 (Microsoft)
Vulnerability Note VU#135940 Windows SMB version 2 vulnerability (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus