CVE-2011-0660

The SMB client in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote SMB servers to execute arbitrary code via a crafted (1) SMBv1 or (2) SMBv2 response, aka "SMB Client Response Parsing Vulnerability."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
microsoftwindows_7
*
microsoftwindows_7
-
microsoftwindows_7
-
microsoftwindows_7
-
microsoftwindows_xp
*
microsoftwindows_xp
-
microsoftwindows_2003_server
*
microsoftwindows_2003_server
*
microsoftwindows_server_2003
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
-
microsoftwindows_server_2008
-
microsoftwindows_server_2008
-
microsoftwindows_server_2008
-
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_vista
-
microsoftwindows_vista
-
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/71772
http://www.securityfocus.com/bid/47239
http://www.securitytracker.com/id?1025328
http://www.us-cert.gov/cas/techalerts/TA11-102A.html
http://www.vupen.com/english/advisories/2011/0938
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-019
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11995
http://osvdb.org/71772
http://www.securityfocus.com/bid/47239
http://www.securitytracker.com/id?1025328
http://www.us-cert.gov/cas/techalerts/TA11-102A.html
http://www.vupen.com/english/advisories/2011/0938
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-019
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11995