Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-3880
HistoryJul 27, 2006 - 1:04 a.m.

CVE-2006-3880

2006-07-2701:04:00
[email protected]
web.nvd.nist.gov
21
microsoft
windows
tcp
denial of service
vulnerability
security
nvd
cve-2006-3880

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.141 Low

EPSS

Percentile

95.7%

JSON

Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Small Business Server 2003 allow remote attackers to cause a denial of service (IP stack hang) via a continuous stream of packets on TCP port 135 that have incorrect TCP header checksums and random numbers in certain TCP header fields, as demonstrated by the Achilles Windows Attack Tool. NOTE: the researcher reports that the Microsoft Security Response Center has stated "Our investigation which has included code review, review of the TCPDump, and attempts on reproing the issue on multiple fresh installs of various Windows Operating Systems have all resulted in non confirmation.

Affected configurations

NVD
Node
microsoftwindows_2000
OR
microsoftwindows_2000sp1
OR
microsoftwindows_2000sp2
OR
microsoftwindows_2000sp3
OR
microsoftwindows_2000sp4
OR
microsoftwindows_2003_serverMatchdatacenter_edition
OR
microsoftwindows_2003_serverMatchdatacenter_editionsp1
OR
microsoftwindows_2003_serverMatchdatacenter_edition_64-bit
OR
microsoftwindows_2003_serverMatchdatacenter_edition_64-bitsp1
OR
microsoftwindows_2003_serverMatchenterprise_64-bit
OR
microsoftwindows_2003_serverMatchenterprise_editionsp1
OR
microsoftwindows_2003_serverMatchenterprise_edition_64-bit
OR
microsoftwindows_2003_serverMatchr2datacenter_64-bit
OR
microsoftwindows_2003_serverMatchsp1enterprise
OR
microsoftwindows_2003_serverMatchstandard
OR
microsoftwindows_2003_serverMatchstandardsp1
OR
microsoftwindows_2003_serverMatchstandard_64-bit
OR
microsoftwindows_2003_serverMatchweb
OR
microsoftwindows_2003_serverMatchwebsp1
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xpembedded
OR
microsoftwindows_xphome
OR
microsoftwindows_xpmedia_center
OR
microsoftwindows_xpgoldprofessional
OR
microsoftwindows_xpsp164-bit
OR
microsoftwindows_xpsp1embedded
OR
microsoftwindows_xpsp1home
OR
microsoftwindows_xpsp1media_center
OR
microsoftwindows_xpsp2home
OR
microsoftwindows_xpsp2media_center
OR
microsoftwindows_xpsp2tablet_pc

Related

nvd 1
cvelist 1
nvd
nvd
CVE-2006-3880
2006-07-27 01:04:00
cvelist
cvelist
CVE-2006-3880
2006-07-27 00:00:00

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.141 Low

EPSS

Percentile

95.7%

JSON
Related for CVE-2006-3880
nvd1cvelist1