The Metasploit Project hosts the world's largest database of quality assured exploits, including hundreds of remote exploits, auxiliary modules, and payloads. You can even review the Metasploit Framework source code of any module - or write your own.

Search for modules

Microsoft Windows 7 / Server 2008 R2 SMB Client Infinite Loop

This module exploits a denial of service flaw in the Microsoft Windows SMB client on Windows 7 and Windows Server 2008 R2. To trigger this bug, run this module as a service and forces a vulnerabile client to access the IP of this system as an SMB server. This can be accomplished by embedding a UNC path (\HOST\share\something) into a web page if the target is using Internet Explorer, or a Word document otherwise.

Rank

• Normal

Authors

• Laurent Gaffie < laurent.gaffie [at] gmail.com >
• hdm < hdm [at] metasploit.com >

References

• CVE-2010-0017
• OSVDB-62244
• MSB-MS10-006
• http://g-laurent.blogspot.com/2009/11/windows-7-server-2008r2-remote-kernel.html

Development

• Source Code
• History

Similar Modules

• auxiliary/dos/windows/smb/ms05_047_pnp
• auxiliary/dos/windows/smb/ms06_035_mailslot
• auxiliary/dos/windows/smb/ms06_063_trans
• auxiliary/dos/windows/smb/ms09_001_write
• auxiliary/dos/windows/smb/ms09_050_smb2_negotiate_pidhigh
• auxiliary/dos/windows/smb/ms09_050_smb2_session_logoff
• auxiliary/dos/windows/smb/ms10_054_queryfs_pool_overflow
• auxiliary/dos/windows/smb/ms11_019_electbowser
• auxiliary/dos/windows/smb/rras_vls_null_deref
• auxiliary/dos/windows/smb/vista_negotiate_stop

Usage Information

Module Options