ID CVE-2006-6307 Type cve Reporter NVD Modified 2011-03-07T21:45:45
Description
srvloc.sys in Novell Client for Windows before 4.91 SP3 allows remote attackers to cause an unspecified denial of service via a crafted packet to port 427 that triggers an access of pageable or invalid addresses using a higher interrupt request level (IRQL) than necessary.
{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-6307", "history": [], "references": ["http://www.vupen.com/english/advisories/2006/4840", "http://www.securityfocus.com/bid/21430", "https://secure-support.novell.com/KanisaPlatform/Publishing/859/3480790_f.SAL_Public.html"], "lastseen": "2016-09-03T07:57:46", "bulletinFamily": "NVD", "title": "CVE-2006-6307", "cpe": ["cpe:/a:novell:client:4.91:sp2"], "viewCount": 0, "id": "CVE-2006-6307", "hash": "c87f63a9a77957647bd8c222ed89e8daae8bf8a1d7d64dfeb0b22e9dee8ebeb2", "description": "srvloc.sys in Novell Client for Windows before 4.91 SP3 allows remote attackers to cause an unspecified denial of service via a crafted packet to port 427 that triggers an access of pageable or invalid addresses using a higher interrupt request level (IRQL) than necessary.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2006-6307"], "scanner": [], "modified": "2011-03-07T21:45:45", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2006-12-05T06:28:00", "enchantments": {"vulnersScore": 5.0}}
{"result": {"osvdb": [{"id": "OSVDB:31354", "type": "osvdb", "title": "Novell Client srvloc.sys Crafted Packet Unspecified Remote DoS", "description": "# No description provided by the source\n\n## References:\nVendor Specific News/Changelog Entry: https://secure-support.novell.com/KanisaPlatform/Publishing/859/3480790_f.SAL_Public.html\n[Secunia Advisory ID:23244](https://secuniaresearch.flexerasoftware.com/advisories/23244/)\nKeyword: TCP port 427\nFrSIRT Advisory: ADV-2006-4840\n[CVE-2006-6307](https://vulners.com/cve/CVE-2006-6307)\nBugtraq ID: 21430\n", "published": "2006-11-29T03:18:58", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://vulners.com/osvdb/OSVDB:31354", "cvelist": ["CVE-2006-6307"], "lastseen": "2017-04-28T13:20:27"}], "nessus": [{"id": "NOVELL_CLIENT_SRVLOC_DOS.NASL", "type": "nessus", "title": "Novell Client srvloc.sys Crafted Packet Unspecified Remote DoS", "description": "The file 'srvloc.sys' included with the Novell Client software is reportedly vulnerable to a denial of service attack when processing malformed SLP packets to port 427.\n\nNote that it is not currently known whether this involves the TCP or UDP service or both.", "published": "2007-01-03T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=23970", "cvelist": ["CVE-2006-6307"], "lastseen": "2018-07-18T14:22:20"}]}}
