Type
Logic error
Impact of exploitation
Denial of Service
User Interaction
no user interaction is needed
Attack Vector
Malicious remote network traffic
Rating
Medium
Vulnerable systems
Windows 7,
Windows 7 x64,
Windows 2008 R2,

Summary
A vulnerability in Microsoft Windows (Windows 7 / 2008 R2) may allow for remote denial-of-service attacks.

Description -

A vulnerability in Microsoft Windows (Windows 7 / 2008 R2) may allow for remote denial-of-service attacks. The kernel in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers to cause a denial of service (infinite loop and system hang) via a (1) SMBv1 or (2) SMBv2 response packet that contains a NetBIOS header with an incorrect length value.
McAfee Product Mitigation & Recommendations

Recommendations -

McAfee is unaware of a vendor-supplied patch or update at this time (11/13/2009)
McAfee Product Mitigation
McAfee Foundstone

Signature:
Microsoft Windows SMB_PACKET Remote Kernel Denial-of-Service Vulnerability

Signature identifier:
7342

Release date:
11/13/2009


Additional Resources -
Windows 7 / Server 2008R2 Remote Kernel Crash

http://g-laurent.blogspot.com/2009/11/windows-7-server-2008r2-remote-kernel.html