Microsoft Updates for Multiple SMB Protocol Vulnerabilities

Last Revised
Alert Code

Systems Affected

  • Microsoft Windows 2000, XP, and Vista
  • Microsoft Windows Server 2000, 2003, and 2008


Microsoft has released updates that address vulnerabilities in Microsoft Windows and Windows Server.

In their bulletin for January 2009, Microsoft released updates to address vulnerabilities in the Server Message Block (SMB) Protocol that affects all supported versions Microsoft Windows.


A remote, unauthenticated attacker could gain elevated privileges, execute arbitrary code, or cause a denial-of-service.


Microsoft has provided updates for this vulnerability in the Microsoft Security Bulletin Summary for January 2009. The security bulletin describes any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects. Administrators should also consider using an automated update distribution system such as Windows Server Update Services (WSUS).



January 13, 2009: Initial release

This product is provided subject to this Notification and this Privacy & Use policy.