Trend Micro Security

MS11-043:SMB クライアントの脆弱性により、リモートでコードが実行される (2536276)

  危険度: : 緊急
  CVE識別番号: CVE-2011-1268

  概要

There exists a vulnerability in Windows that could allow remote code execution if an attacker sent a malicious SMB response to a user's SMB request. The attacker would need to trick users to initiate an SMB connection to a malicious SMB server. This security update corrects the manner in which the SMB client handles specially crafted SMB responses.

  トレンドマイクロの対策

詳しい情報については以下のサイトをご参照ください。
MS11-043:SMB クライアントの脆弱性により、リモートでコードが実行される (2536276)

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1004692
  Trend Micro Deep Security DPI Rule Name: SMB Response Parsing Vulnerability

  影響を受けるソフトウェア

  • Windows XP Service Pack 3
  • Windows XP Professional x64 Edition Service Pack 2
  • Windows Server 2003 Service Pack 2
  • Windows Server 2003 x64 Edition Service Pack 2
  • Windows Server 2003 with SP2 for Itanium-based Systems
  • Windows Vista Service Pack 1 and Windows Vista Service Pack 2
  • Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
  • Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
  • Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
  • Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
  • Windows 7 for 32-bit Systems
  • Windows 7 for 32-bit Systems Service Pack 1
  • Windows 7 for x64-based Systems
  • Windows 7 for x64-based Systems Service Pack 1
  • Windows Server 2008 R2 for x64-based Systems
  • Windows Server 2008 R2 for x64-based Systems Service Pack 1
  • Windows Server 2008 R2 for Itanium-based Systems
  • Windows Server 2008 R2 for Itanium-based Systems Service Pack 1