Malformed SMB packet detected (SMB malformed)

About this signature or vulnerability

BlackICE: http://www.networkice.com/advice/Intrusions/2000501

Default risk level

Low risk vulnerability Low

Sensors that have this signature

BlackICE: 1.8.5.5

Systems affected

Various vendors Any application

Type

Suspicious Activity

Vulnerability description

A malformed SMB (Server Message Block) request has been made, which may indicate that an attacker is attempting to execute a denial of service attack. The SMB protocol enables client applications access files and services from server programs on a network.

How to remove this vulnerability

No remedy currently available.

References

ISS X-Force
Malformed SMB packet detected
http://www.iss.net/security_center/static/2357.php