Vulnerability Bulletins |
Múltiples vulnerabilidades en el servicio SMB de Microsoft Windows |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Obtener acceso |
| Dificulty | Avanzado |
| Required attacker level | Acceso remoto sin cuenta a un servicio estandar |
System information |
|
| Property | Value |
| Affected manufacturer | Microsoft |
| Affected software |
Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 |
Description |
|
|
Se han descubierto múltiples vulnerabilidades en el servicio de compartición de ficheros SMB de todas las versiones de Microsoft Windows. Un atacante remoto podría ejecutar código arbitrario mediante un paquete SMB especialmente diseñado. Este boletín reemplaza al MS08-068 y al MS06-030. |
|
Solution |
|
|
Actualización de software Microsoft (MS10-036) Microsoft Windows 2000 SP4 / patch Windows2000-KB978251-x86-ENU Windows XP / patch Windowsxp-KB978251-x86-enu Windows XP x64 / patch WindowsServer2003.WindowsXP-KB978251-x64-enu Windows Server 2003 / patch Windowsserver2003-KB978251-x86-enu Windows Server 2003 x64 / patch Windowsserver2003.WindowsXP-KB978251-x64-enu Windows Server 2003 Itanium / patch Windowsserver2003-KB978251-ia64-enu Windows Vista / patch Windows6.0-KB978251-x86 Windows Vista x64 / patch Windows6.0-KB978251-x64 Windows Server 2008 / patch Windows6.0-KB978251-x86 Windows Server 2008 x64 / patch Windows6.0-KB978251-x64 Windows Server 2008 Itanium / patch Windows6.0-KB978251-ia64 http://www.microsoft.com/downloads |
|
Standar resources |
|
| Property | Value |
| CVE |
CVE-2010-0016 CVE-2010-0017 |
| BID | |
Other resources |
|
|
Microsoft Security Bulletin (MS10-006) http://www.microsoft.com/technet/security/Bulletin/MS10-006.mspx |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2010-02-12 |