Showing 1 - 2 of 2

Files from Renaud Feil

First Active	2010-02-10
Last Active	2010-04-16

Microsoft SMB Client Kernel Stack Overflow: Posted Apr 16, 2010; Authored by laurent gaffie, Renaud Feil | Site stratsec.net; A vulnerability exists in the SMB client of Microsoft Windows 7 and Windows Server 2008 R2. This vulnerability allows an attacker to trigger a kernel stack overflow by sending a specific "SMB_COM_TRANSACTION2" response. Attacking the SMB client can be achieved by convincing a user to connect to a malicious SMB server. Alternatively, the attacker could attempt man-in-the-middle attacks (such as ARP spoofing, NBNS packet spoofing, etc.) to redirect legitimate SMB connections to a malicious SMB server. Successful exploitation of this issue may result in remote code execution with kernel privileges.; tags | advisory, remote, overflow, kernel, spoof, code execution; systems | windows; advisories | CVE-2010-0270; SHA-256 | 4634330c6b9a740411368733ef3422e5a35456f847e190d753c1af27f8b65e09; Download | Favorite | View

Microsoft SMB Client Pool Overflow: Posted Feb 10, 2010; Authored by laurent gaffie, Renaud Feil | Site stratsec.net; A vulnerability exists in the Microsoft SMB client which allows an attacker to trigger a kernel pool memory corruption by sending a specific 'Negotiate Protocol' response.; tags | advisory, kernel, protocol; advisories | CVE-2010-0016, CVE-2010-0017; SHA-256 | dd4096a3adf7c94d29852abe073cbc999aa234b0784a145cc1d0c9ce5a2c7733; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days