HighMicrosoft Windows Knowledge Base Article 978251 update is not installed on the system, which could allow an attacker to exploit the following vulnerabilities:
Microsoft Windows could allow a remote attacker to execute arbitrary code on the system, caused by the improper validation of fields in the SMB response by the Server Message Block (SMB) client. By persuading a victim to connect to a malicious SMB server, a remote attacker could send a specially-crafted SMB response to a client-initiated SMB request to corrupt a pool and execute arbitrary code on the system with system level privileges.
Microsoft Windows could allow a remote attacker to execute arbitrary code on the system, caused by the improper handling of malicious SMB responses by the Server Message Block (SMB) client. By sending a specially-crafted SMB response, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with system level privileges or cause a denial of service.
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS10-006. See References.
Microsoft Security Bulletin MS10-006
Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)
http://www.microsoft.com/technet/security/bulletin/ms10-006.mspx
IBM Internet Security Systems X-Force Database
Microsoft Windows Server Message Block pool code execution
http://xforce.iss.net/xforce/xfdb/55151
IBM Internet Security Systems X-Force Database
Microsoft Windows Server Message Block client code execution
http://xforce.iss.net/xforce/xfdb/55152
ISS X-Force
Microsoft Windows Knowledge Base Article 978251 update is not installed
http://www.iss.net/security_center/static/55153.php
CVE CVE-2010-0017
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0017
CVE CVE-2010-0016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0016
