CVE-2008-4114

NONECVSS 0.0

0.0

srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via an SMB WRITE_ANDX packet with an offset that is inconsistent with the packet size, related to "insufficiently validating the buffer size," as demonstrated by a request to the \PIPE\lsarpc named pipe, aka "SMB Validation Denial of Service Vulnerability."

🔗 References (26)

cve@mitrehttp://secunia.com/advisories/31883
cve@mitrehttp://www.reversemode.com/index.php?option=com_content&task=view&id=54&Itemid=1
cve@mitrehttp://www.securityfocus.com/archive/1/496354/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/31179
cve@mitrehttp://www.securitytracker.com/id?1020887
cve@mitrehttp://www.us-cert.gov/cas/techalerts/TA09-013A.html
cve@mitrehttp://www.vallejo.cc/proyectos/vista_SMB_write_DoS.htm
cve@mitrehttp://www.vupen.com/english/advisories/2008/2583
cve@mitrehttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-001
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/45146
cve@mitrehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5262
cve@mitrehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6044
cve@mitrehttps://www.exploit-db.com/exploits/6463
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/31883
af854a3a-2127-422b-91ae-364da2661108http://www.reversemode.com/index.php?option=com_content&task=view&id=54&Itemid=1

Is Your Infrastructure Affected by CVE-2008-4114?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-4114

📅 Published

🔄 Last Modified

🔗 References (26)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-4114?