New Search

SMB Information Disclosure Vulnerability

oval:org.mitre.oval:def:3

The Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4 XP SP1 and SP2 Server 2003 up to SP1 and other products allows remote attackers to obtain sensitive information via crafted requests that leak information in SMB buffers which are not properly initialized aka "SMB Information Disclosure Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows Server 2003
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2006-1315
Product(s):