Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-0017

EPSS 43.93% · P98
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-0017

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB client implementation in Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges, via a crafted SMB Negotiate response, aka "SMB Client Race Condition Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows SMB客户端实现竞争条件漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows是Microsoft发布的非常流行的操作系统。 SMB客户端存在竞争条件漏洞。实现没有正确地验证SMB Negotiate响应报文中的字段,远程攻击者可以通过向初始SMB请求的客户端回复特制的SMB响应触发竞争条件,导致完全控制受影响的系统。 这个漏洞在Windows Vista和Windows Server 2008平台上只能导致崩溃或权限提升。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-0017

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-0017

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-02-10 · 36 CVEs total

CVE-2009-4634Ffmpeg 多个整数溢出漏洞
CVE-2010-0241Microsoft Windows ICMPv6路由信息远程代码执行漏洞
CVE-2010-0242Microsoft Windows TCP/IP栈选择性应答远程拒绝服务漏洞
CVE-2010-0243Microsoft Office OfficeArtSpgr容器指针覆盖缓冲区错误漏洞
CVE-2010-0250Microsoft DirectX DirectShow AVI文件堆缓冲区溢出漏洞
CVE-2010-0252Microsoft Data Analyzer ActiveX控件栈破坏漏洞
CVE-2009-4631Ffmpeg VP3 decoder Off-by-one溢出漏洞
CVE-2009-4632FFmpeg 'oggparsevorbis.c' 指针算法拒绝服务攻击漏洞
CVE-2009-4633Ffmpeg 'vorbis_dec.c' 拒绝服务攻击或代码执行漏洞
CVE-2010-0240Microsoft Windows头MDL碎片远程代码执行漏洞
CVE-2009-4635Ffmpeg MOV存储器拒绝服务漏洞
CVE-2009-4636Ffmpeg 无限循环拒绝服务漏洞
CVE-2009-4637Ffmpeg 未明拒绝服务攻击漏洞
CVE-2009-4638FFmpeg 未明整数溢出漏洞
CVE-2009-4639Ffmpeg AVI 分路器 拒绝服务攻击漏洞
CVE-2009-4640Ffmpeg‘vorbis_dec.c’拒绝服务和代码执行漏洞
CVE-2010-0394Nanosleep Trac Git插件远程命令注入漏洞
CVE-2010-0564Trendmicro OfficeScan TMUFE缓冲区溢出漏洞
CVE-2010-0031Microsoft PowerPoint OEPlaceholderAtom记录无效数组索引漏洞
CVE-2010-0020Microsoft Windows SMB 路径名远程溢出漏洞

Showing top 20 of 36 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-0017

No comments yet

Leave a comment