Detections
Analytics

MS11-020: Vulnerability in SMB Server Could Allow Remote Code Execution (2508429) (remote check)

critical Nessus Plugin ID 53503

Language:

Synopsis

It is possible to execute arbitrary code on the remote Windows host due to flaws in its SMB implementation.

Description

The remote host is affected by a vulnerability in the SMB server that may allow an attacker to execute arbitrary code or perform a denial of service against the remote host. This vulnerability depends on access to a Windows file share, but does not necessarily require credentials.

Solution

Microsoft has released a set of patches for Windows XP, Vista, 2008, 7, and 2008 R2.

See Also

https://www.nessus.org/u?c0a773fa

Plugin Details

Severity: Critical

ID: 53503

File Name: smb_kb2508429.nasl

Version: 1.12

Type: remote

Agent: windows

Family: Windows

Published: 4/20/2011

Updated: 8/5/2020

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2011-0661

Vulnerability Information

CPE: x-cpe:/a:microsoft:windows:smbsvr, cpe:/o:microsoft:windows

Required KB Items: SMB/accessible_shares/1

Excluded KB Items: SMB/not_windows

Exploit Ease: No known exploits are available

Patch Publication Date: 4/12/2011

Vulnerability Publication Date: 4/12/2011

Reference Information

CVE: CVE-2011-0661

BID: 47198

IAVA: 2011-A-0050-S

MSFT: MS11-020

MSKB: 2508429