=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2007/VULN503
_____________________________________________________________________

DATE                      : 12/12/2007

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Windows Vista running SMBv2.

======================================================================
http://www.microsoft.com/technet/security/bulletin/ms07-063.mspx
______________________________________________________________________

Microsoft Security Bulletin MS07-063  Important
Vulnerability in SMBv2 Could Allow Remote Code Execution (942624)

This important security update resolves a privately reported
vulnerability in Server Message Block Version 2 (SMBv2). The
vulnerability could allow an attacker to tamper with data transferred
via SMBv2, which could allow remote code execution in domain
configurations communicating with SMBv2.

This security update addresses the vulnerability by implementing proper
signing using SMBv2.


Affected Software

     Windows Vista
     Windows Vista x64


Vulnerability Information
	
SMBv2 Signing Vulnerability
CVE-2007-5351

A remote code execution vulnerability exists in the SMBv2 protocol that
could allow a remote anonymous attacker to run code with the privileges of
the logged-on user.

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================