A buffer overflow within netapi32.dll allows a remote attacker to execute arbitrary code as SYSTEM on a remote host.
BeyondTrust Prevention and Detection:
BeyondTrust's Blink® Personal Edition protects from this vulnerability.
BeyondTrust's Blink® Professional Edition protects from this vulnerability.
BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
Microsoft Patch - MS06-040
Since this vulnerability is patched, the primary mitigation for this vulnerability would be to apply MS06-040. Other mitigation (suggested by Microsoft) included blocking TCP ports 139 and 445, but because this disables remote management of hosts, eEye does not suggest this mitigation technique.
First Public PoC Code Disclosure (Metasploit Plugin)