CVE-2010-0269

Microsoft Windows - Remote Code Execution via Crafted SMB Response

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0269.

AI-analyzed exploit summary This is a functional exploit for CVE-2010-0270 (MS10-020), targeting a stack overflow in the SMB Client Trans2 request handling on Windows 7/2008R2. It sets up a malicious SMB server that sends crafted responses to trigger the vulnerability.

Description

The SMB client in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly allocate memory for SMB responses, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted (1) SMBv1 or (2) SMBv2 response, aka "SMB Client Memory Allocation Vulnerability."

Exploits (1)

exploitdb WORKING POC

pythondoswindows

https://www.exploit-db.com/exploits/12273

View Code ZIP pw:eip

This is a functional exploit for CVE-2010-0270 (MS10-020), targeting a stack overflow in the SMB Client Trans2 request handling on Windows 7/2008R2. It sets up a malicious SMB server that sends crafted responses to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Windows 7/2008R2 SMB Client

No auth needed

Prerequisites: Network access to target · Target must initiate SMB connection to attacker-controlled server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/39372

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-020

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7129

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA10-103A.html

Scores

EPSS 0.2840

EPSS Percentile 97.9%

Details

CWE

CWE-399

Status published

Products (7)

microsoft/windows_2000

microsoft/windows_2003_server (2 CPE variants)

microsoft/windows_7 (2 CPE variants)

microsoft/windows_server_2003

microsoft/windows_server_2008 (8 CPE variants)

microsoft/windows_vista (6 CPE variants)

microsoft/windows_xp (3 CPE variants)

Published Apr 14, 2010

Tracked Since Feb 18, 2026