What is CVE-2009-3676?

CVE-2009-3676 is a vulnerability in N/a. Published 2009-11-13.

Is CVE-2009-3676 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-3676

The SMB client in the kernel in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to cause a denial of service (infinite loop and system hang) via a (1) SMBv1 or (2) SMBv2 response pac…

EPSS: 0.560 (98.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

aRustyDev/C844

References

news.cnet.com/8301-27080_3-10395891-245.html (x_refsource_MISC)
1023179 (vdb-entry, x_refsource_SECTRACK)
g-laurent.blogspot.com/2009/11/windows-7-server-2008r2-remote-kernel.html (x_refsource_MISC)
oval:org.mitre.oval:def:7186 (x_refsource_OVAL, signature, vdb-entry)
www.microsoft.com/technet/security/advisory/977544.mspx (x_refsource_CONFIRM)
37347 (x_refsource_SECUNIA, third-party-advisory)
ADV-2009-3216 (vdb-entry, x_refsource_VUPEN)
MS10-020 (x_refsource_MS, vendor-advisory)
praetorianprefect.com/archives/2009/11/how-to-crash-windows-7-and-server-2008/ (x_refsource_MISC)
secunia.com/blog/66/ (x_refsource_MISC)

Frequently asked questions

What is CVE-2009-3676?: CVE-2009-3676 is a vulnerability in N/a. Published 2009-11-13.
Is CVE-2009-3676 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.