Back to search

MS09-001: Vulnerabilities in SMB Could Allow Remote Code Execution (958687)

Severity CVSS Published Added Modified
10 (AV:N/AC:L/Au:N/C:C/I:C/A:C) January 13, 2009 January 13, 2009 April 10, 2014

Available Exploits 

Description

This security update resolves two privately reported vulnerabilities and one publicly disclosed vulnerability in Microsoft Server Message Block (SMB) Protocol. The vulnerabilities could allow remote code execution on affected systems. An attacker who successfully exploited these vulnerabilities could install programs; view, change, or delete data; or create new accounts with full user rights. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter. Best practices recommend that systems that are connected to the Internet have a minimal number of ports exposed.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

  • Microsoft Windows Server 2008 SP2 OR SP1 (x86_64), Microsoft Windows Server 2008 Enterprise Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2008 Standard Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2008 Datacenter Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2008 HPC Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2008 Web Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2008 Storage Edition SP2 OR SP1 (x86_64), Microsoft Windows Small Business Server 2008 SP2 OR SP1 (x86_64), Microsoft Windows Essential Business Server 2008 SP2 OR SP1 (x86_64)

    MS09-001: Security Update for Windows Server 2008 x64 Edition (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Server 2008 SP1 (ia64), Microsoft Windows Server 2008 Enterprise Edition SP1 (ia64), Microsoft Windows Server 2008 Standard Edition SP1 (ia64), Microsoft Windows Server 2008 Datacenter Edition SP1 (ia64), Microsoft Windows Server 2008 HPC Edition SP1 (ia64), Microsoft Windows Server 2008 Web Edition SP1 (ia64), Microsoft Windows Server 2008 Storage Edition SP1 (ia64), Microsoft Windows Small Business Server 2008 SP1 (ia64), Microsoft Windows Essential Business Server 2008 SP1 (ia64)

    MS09-001: Security Update for Windows Server 2008 for Itanium-based Systems (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Vista < SP1 OR SP1 (x86_64), Microsoft Windows Vista Home, Basic Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Home, Basic N Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Home, Premium Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Ultimate Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Enterprise Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Business Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Business N Edition < SP1 OR SP1 (x86_64), Microsoft Windows Vista Starter Edition < SP1 OR SP1 (x86_64)

    MS09-001: Security Update for Windows Vista for x64-based Systems (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Server 2008 SP1 (x86), Microsoft Windows Server 2008 Enterprise Edition SP1 (x86), Microsoft Windows Server 2008 Standard Edition SP1 (x86), Microsoft Windows Server 2008 Datacenter Edition SP1 (x86), Microsoft Windows Server 2008 HPC Edition SP1 (x86), Microsoft Windows Server 2008 Web Edition SP1 (x86), Microsoft Windows Server 2008 Storage Edition SP1 (x86), Microsoft Windows Small Business Server 2008 SP1 (x86), Microsoft Windows Essential Business Server 2008 SP1 (x86)

    MS09-001: Security Update for Windows Server 2008 (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Vista < SP1 OR SP1 (x86), Microsoft Windows Vista Home, Basic Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Home, Basic N Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Home, Premium Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Ultimate Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Enterprise Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Business Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Business N Edition < SP1 OR SP1 (x86), Microsoft Windows Vista Starter Edition < SP1 OR SP1 (x86)

    MS09-001: Security Update for Windows Vista (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows 2000 SP4 (x86), Microsoft Windows 2000 Professional SP4 (x86), Microsoft Windows 2000 Server SP4 (x86), Microsoft Windows 2000 Advanced Server SP4 (x86), Microsoft Windows 2000 Datacenter Server SP4 (x86)

    MS09-001: Security Update for Windows 2000 (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Server 2003 SP2 OR SP1 (x86), Microsoft Windows Server 2003, Standard Edition SP2 OR SP1 (x86), Microsoft Windows Server 2003, Enterprise Edition SP2 OR SP1 (x86), Microsoft Windows Server 2003, Datacenter Edition SP2 OR SP1 (x86), Microsoft Windows Server 2003, Web Edition SP2 OR SP1 (x86), Microsoft Windows Small Business Server 2003 SP2 OR SP1 (x86)

    MS09-001: Security Update for Windows Server 2003 (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Server 2003 SP2 OR SP1 (ia64), Microsoft Windows Server 2003, Standard Edition SP2 OR SP1 (ia64), Microsoft Windows Server 2003, Enterprise Edition SP2 OR SP1 (ia64), Microsoft Windows Server 2003, Datacenter Edition SP2 OR SP1 (ia64), Microsoft Windows Server 2003, Web Edition SP2 OR SP1 (ia64), Microsoft Windows Small Business Server 2003 SP2 OR SP1 (ia64)

    MS09-001: Security Update for Windows Server 2003 for Itanium-based Systems (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows Server 2003 SP2 OR SP1 (x86_64), Microsoft Windows Server 2003, Standard Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2003, Enterprise Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2003, Datacenter Edition SP2 OR SP1 (x86_64), Microsoft Windows Server 2003, Web Edition SP2 OR SP1 (x86_64), Microsoft Windows Small Business Server 2003 SP2 OR SP1 (x86_64)

    MS09-001: Security Update for Windows Server 2003 x64 Edition (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows XP Professional SP3 OR SP2 (x86), Microsoft Windows XP Home SP3 OR SP2 (x86), Microsoft Windows XP Media Center Edition 2005 SP3 (x86), Microsoft Windows XP Tablet PC Edition 2005 SP3 (x86)

    MS09-001: Security Update for Windows XP (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991

  • Microsoft Windows XP Professional SP3 OR SP2 OR SP1 (x86_64)

    MS09-001: Security Update for Windows XP x64 Edition (KB958687)

    Download and apply the patch from: http://go.microsoft.com/fwlink/?LinkId=132991