Page 11 of 71 results (0.010 seconds)

CVSS: 10.0EPSS: 93%CPEs: 7EXPL: 1

CVE-2006-3441 – Microsoft Windows - DNS Resolution Remote Denial of Service (PoC) (MS06-041)

https://notcve.org/view.php?id=CVE-2006-3441

Buffer overflow in the DNS Client service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted record response. NOTE: while MS06-041 implies that there is a single issue, there are multiple vectors, and likely multiple vulnerabilities, related to (1) a heap-based buffer overflow in a DNS server response to the client, (2) a DNS server response with malformed ATMA records, and (3) a length miscalculation in TXT, HINFO, X25, and ISDN records. Desbordamiento de búger en el servicio Client DNS en Microsoft Windows 2000 SP4, XP SP1 y SP2, y Server 2003 SP1 permite a un atacante remoto ejecutar código de su elección a través de respuestas de registro manipulada. NOTA: Mientras MS06-041 implica que hay un solo asunto, hay múltiples vulnerabilidades, relacionados con (1) desbordamiento de búfer basado en pila en un respuesta de servidor DNS al cliente, (2) un respuesta de servidor DNS con registros ATMA mal formados, y (3)un gran pérdida de cálculo en los registros TXT, HINFO, X25, e ISDN. • https://www.exploit-db.com/exploits/2900 http://secunia.com/advisories/21394 http://securitytracker.com/id?1016653 http://www.kb.cert.org/vuls/id/794580 http://www.osvdb.org/27844 http://www.securityfocus.com/bid/19404 http://www.us-cert.gov/cas/techalerts/TA06-220A.html http://www.vupen.com/english/advisories/2006/3211 http://xforce.iss.net/xforce/alerts/id/233 http://xforce.iss.net/xforce/alerts/id/234 http://xforce.iss.net/xforce/alerts/id/235&# •

CVSS: 7.6EPSS: 23%CPEs: 5EXPL: 0

CVE-2006-3648

https://notcve.org/view.php?id=CVE-2006-3648

Unspecified vulnerability in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 and 2003 SP1, allows remote attackers to execute arbitrary code via unspecified vectors involving unhandled exceptions, memory resident applications, and incorrectly "unloading chained exception." Vulnerabilidad no especificada en Microsoft Windows 2000 SP4, XP SP1 y SP2, Server 2003 y 2003 SP1, permite a atacantes remotos ejecutar código de su elección a través de vectores que afectan a excepciones no controladas, aplicaciones de memoria residente, y incorrectamente "excepción de descarga encadenada". • http://securitytracker.com/id?1016661 http://www.kb.cert.org/vuls/id/411516 http://www.securityfocus.com/bid/19384 http://www.us-cert.gov/cas/techalerts/TA06-220A.html http://www.vupen.com/english/advisories/2006/3216 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-051 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A841 •

CVSS: 10.0EPSS: 96%CPEs: 9EXPL: 5

CVE-2006-3439 – Microsoft Server Service - NetpwPathCanonicalize Overflow (MS06-040)

https://notcve.org/view.php?id=CVE-2006-3439

Buffer overflow in the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers, including anonymous users, to execute arbitrary code via a crafted RPC message, a different vulnerability than CVE-2006-1314. Desbordamiento de búfer en Server Service en Microsoft Windows 2000 SP4, XP SP1 y SP2, y Server 2003 SP1 permite a un atacante remoto, incluidos usuario anónimos, ejecutar código de su elección a través de mensajes RPC manipulados, una vulnerabilidad diferente que CVE-2006-1314. • https://www.exploit-db.com/exploits/16367 https://www.exploit-db.com/exploits/2223 https://www.exploit-db.com/exploits/2265 https://www.exploit-db.com/exploits/2162 https://www.exploit-db.com/exploits/2355 http://secunia.com/advisories/21388 http://securitytracker.com/id?1016667 http://www.cisco.com/en/US/products/ps6120/tsd_products_security_response09186a008070c75a.html http://www.dhs.gov/dhspublic/display?content=5789 http://www.kb.cert.org/vuls/id/650769 http:/&#x •

CVSS: 7.8EPSS: 96%CPEs: 9EXPL: 1

CVE-2006-3942 – Microsoft Windows - Mailslot Ring0 Memory Corruption (MS06-035)

https://notcve.org/view.php?id=CVE-2006-3942

The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the ExecuteTransaction function, possibly related to an "SMB PIPE," aka the "Mailslot DOS" vulnerability. NOTE: the name "Mailslot DOS" was derived from incomplete initial research; the vulnerability is not associated with a mailslot. El controlador de servidor (srv.sys) en Microsoft Windows NT 4.0, 2000, XP, y Server 2003 permite a atacantes remotos provocar una denegación de servicio (caída del sistema) mediante un mensaje SMB_COM_TRANSACTION que contiene una cadena sin terminación de carácter nulo, lo cual lleva a una referencia a NULL en la función ExecuteTransaction, posiblemente relacionado con una "tubería SMB" (SMB PIPE), también conocida como vulnerabilidad "Mailslot DOS". NOTA: el nombre "Mailslot DOS" es derivado de una investigación inicial imcompleta; la vulnerabilidad no está asociada con un mailslot (ranura de correo). • https://www.exploit-db.com/exploits/2057 http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx http://secunia.com/advisories/21276 http://securitytracker.com/id?1016606 http://securitytracker.com/id?1017035 http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10 http://www.osvdb.org/27644 http://www.securityfocus.com/archive/1/443287/100/200/threaded http://www.securityfocus.com/archive/1/449179/100/0/threaded http://www.securityfocus.com/bid/19215 • CWE-20: Improper Input Validation •

CVSS: 5.0EPSS: 14%CPEs: 31EXPL: 2

CVE-2006-3880 – Microsoft Windows XP/2000/2003 - Remote Denial of Service

https://notcve.org/view.php?id=CVE-2006-3880

Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Small Business Server 2003 allow remote attackers to cause a denial of service (IP stack hang) via a continuous stream of packets on TCP port 135 that have incorrect TCP header checksums and random numbers in certain TCP header fields, as demonstrated by the Achilles Windows Attack Tool. NOTE: the researcher reports that the Microsoft Security Response Center has stated "Our investigation which has included code review, review of the TCPDump, and attempts on reproing the issue on multiple fresh installs of various Windows Operating Systems have all resulted in non confirmation. ** IMPUGNADO ** Microsoft Windows NT 4.0, Windows 2000, Windows XP, y Windows Small Business Server 2003 permite a atacantes remotos provocar denegación de servicio (manipular la pila IP) a través de un flujo continuo de paquetes sobre el puerto TCP 135 que tiene una cabecera de validación (checksum) TCP erronea y números aleatorios en ciertos campos de cabeceras TCP, como se demostró con Achilles Windows Attack Tool. NOTA: el investigador indicaque Microsoft Security Response Center ha indicado que "Nuestra investigación que ha incluido la revisión de código, la revisión del TCPDump, e intentó reproducir el asunto en múltiples instalaciones frescas de varios sistemas operativos de Windows dieron como resultado la no confirmación". • https://www.exploit-db.com/exploits/28263 http://securityreason.com/securityalert/1282 http://www.securityfocus.com/archive/1/441007/100/0/threaded http://www.securityfocus.com/bid/19135 •