Vulnerability Manager Plus

ms09-050: vulnerabilities in smb could allow remote code execution for Windows Server 2008 x64 Edition (KB975517) for SP2

Risk Information

Base Score

7.5

MODERATE

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

61.784%

CVE Information

Source CVE
CVE-2009-2532

Associated CVE
CVE-2009-2532
CVE-2009-3103
CVE-2009-2526

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
7771

Patch Description
Security Update for Windows Server 2008 x64 Edition (KB975517)

References

http://archives.neohapsis.com/archives/fulldisclosure/2009-09/0090.html
http://blog.48bits.com/?p=510
http://g-laurent.blogspot.com/2009/09/windows-vista7-smb20-negotiate-protocol.html
http://isc.sans.org/diary.html?storyid=7093
http://osvdb.org/57799
http://secunia.com/advisories/36623
http://www.exploit-db.com/exploits/9594
http://www.kb.cert.org/vuls/id/135940
http://www.microsoft.com/technet/security/advisory/975497.mspx
http://www.microsoft.com/technet/security/Bulletin/MS09-050.mspx
http://www.securityfocus.com/archive/1/archive/1/506300/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/506327/100/0/threaded
http://www.securityfocus.com/bid/36299
http://www.securitytracker.com/id?1022848
http://www.us-cert.gov/cas/techalerts/TA09-286A.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/53090