MS09-050: Microsoft Windows SMB2 _Smb2ValidateProviderCallback() Vulnerability (975497) (EDUCATEDSCHOLAR) (uncredentialed check)

This script is Copyright (C) 2009-2017 Tenable Network Security, Inc.


Synopsis :

Arbitrary code may be executed on the remote host through the SMB
port

Description :

The remote host is running a version of Microsoft Windows Vista or
Windows Server 2008 that contains a vulnerability in its SMBv2
implementation. An attacker can exploit this flaw to disable the
remote host or to execute arbitrary code on it.

EDUCATEDSCHOLAR is one of multiple Equation Group vulnerabilities and
exploits disclosed on 2017/04/14 by a group known as the Shadow
Brokers.

See also :

http://www.nessus.org/u?0f72ec72
http://technet.microsoft.com/en-us/security/bulletin/MS09-050

Solution :

Microsoft has released a patch for Windows Vista and Windows Server
2008.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 40887 ()

Bugtraq ID: 36299
36594

CVE ID: CVE-2009-2532
CVE-2009-3103

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now