Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-3351
HistoryJul 06, 2006 - 1:05 a.m.

CVE-2006-3351

2006-07-0601:05:00
[email protected]
web.nvd.nist.gov
22
cve-2006-3351
buffer overflow
windows explorer
denial of service
arbitrary code
url file
internetshortcut
nvd

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

7.8 High

AI Score

Confidence

High

0.125 Low

EPSS

Percentile

95.5%

JSON

Buffer overflow in Windows Explorer (explorer.exe) on Windows XP and 2003 allows user-assisted attackers to cause a denial of service (repeated crash) and possibly execute arbitrary code via a .url file with an InternetShortcut tag containing a long URL and a large number of “file:” specifiers.

Affected configurations

NVD
Node
microsoftwindows_2003_serverMatch3.1.0.3270
OR
microsoftwindows_2003_serverMatch64-bit
OR
microsoftwindows_2003_serverMatchdatacenter_64-bitsp1
OR
microsoftwindows_2003_serverMatchdatacenter_64-bitsp1_beta_1
OR
microsoftwindows_2003_serverMatchdatacenter_edition
OR
microsoftwindows_2003_serverMatchdatacenter_editionsp1
OR
microsoftwindows_2003_serverMatchdatacenter_editionsp1_beta_1
OR
microsoftwindows_2003_serverMatchdatacenter_edition_64-bit
OR
microsoftwindows_2003_serverMatchdatacenter_edition_64-bitsp1
OR
microsoftwindows_2003_serverMatchdatacenter_edition_64-bitsp1_beta_1
OR
microsoftwindows_2003_serverMatchenterprise64-bit
OR
microsoftwindows_2003_serverMatchenterprisesp1
OR
microsoftwindows_2003_serverMatchenterprisesp1_beta_1
OR
microsoftwindows_2003_serverMatchenterprise_64-bit
OR
microsoftwindows_2003_serverMatchenterprise_64-bitsp1
OR
microsoftwindows_2003_serverMatchenterprise_64-bitsp1_beta_1
OR
microsoftwindows_2003_serverMatchenterprise_editionsp1
OR
microsoftwindows_2003_serverMatchenterprise_editionsp1_beta_1
OR
microsoftwindows_2003_serverMatchenterprise_edition_64-bit
OR
microsoftwindows_2003_serverMatchenterprise_edition_64-bitsp1
OR
microsoftwindows_2003_serverMatchenterprise_edition_64-bitsp1_beta_1
OR
microsoftwindows_2003_serverMatchitanium
OR
microsoftwindows_2003_serverMatchr2
OR
microsoftwindows_2003_serverMatchr264-bit
OR
microsoftwindows_2003_serverMatchr2datacenter_64-bit
OR
microsoftwindows_2003_serverMatchr2sp1
OR
microsoftwindows_2003_serverMatchr2sp1_beta_1
OR
microsoftwindows_2003_serverMatchsp1
OR
microsoftwindows_2003_serverMatchsp1enterprise
OR
microsoftwindows_2003_serverMatchsp1itanium
OR
microsoftwindows_2003_serverMatchstandard
OR
microsoftwindows_2003_serverMatchstandard64-bit
OR
microsoftwindows_2003_serverMatchstandardsp1
OR
microsoftwindows_2003_serverMatchstandardsp1_beta_1
OR
microsoftwindows_2003_serverMatchstandard_64-bit
OR
microsoftwindows_2003_serverMatchweb
OR
microsoftwindows_2003_serverMatchwebsp1
OR
microsoftwindows_2003_serverMatchwebsp1_beta_1
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xpembedded
OR
microsoftwindows_xphome
OR
microsoftwindows_xpmedia_center
OR
microsoftwindows_xpgold
OR
microsoftwindows_xpgoldhome
OR
microsoftwindows_xpgoldprofessional
OR
microsoftwindows_xpsp164-bit
OR
microsoftwindows_xpsp1embedded
OR
microsoftwindows_xpsp1home
OR
microsoftwindows_xpsp1media_center
OR
microsoftwindows_xpsp1tablet_pc
OR
microsoftwindows_xpsp2home
OR
microsoftwindows_xpsp2media_center
OR
microsoftwindows_xpsp2tablet_pc
OR
microsoftwindows_xpMatchibm_oem_version
OR
microsoftwindows_xpMatchibm_oem_versionsp1
CPENameOperatorVersion
microsoft:windows_2003_servermicrosoft windows 2003 servereq3.1.0.3270
microsoft:windows_2003_servermicrosoft windows 2003 servereq64-bit
microsoft:windows_2003_servermicrosoft windows 2003 servereqdatacenter_64-bit
microsoft:windows_2003_servermicrosoft windows 2003 servereqdatacenter_edition
microsoft:windows_2003_servermicrosoft windows 2003 servereqdatacenter_edition_64-bit
microsoft:windows_2003_servermicrosoft windows 2003 servereqenterprise
microsoft:windows_2003_servermicrosoft windows 2003 servereqenterprise_64-bit
microsoft:windows_2003_servermicrosoft windows 2003 servereqenterprise_edition
microsoft:windows_2003_servermicrosoft windows 2003 servereqenterprise_edition_64-bit
microsoft:windows_2003_servermicrosoft windows 2003 servereqitanium
Rows per page:
1-10 of 171

Related

nvd 1
checkpoint_advisories 1
cvelist 1
nvd
nvd
CVE-2006-3351
2006-07-06 01:05:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Explorer Invalid URL File Parsing Stack Overflow (CVE-2006-3351)
2009-10-20 00:00:00
cvelist
cvelist
CVE-2006-3351
2006-07-06 01:00:00

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

7.8 High

AI Score

Confidence

High

0.125 Low

EPSS

Percentile

95.5%

JSON
Related for CVE-2006-3351
nvd1checkpoint_advisories1cvelist1