Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2006-3441
HistoryAug 09, 2006 - 1:04 a.m.

CVE-2006-3441

2006-08-0901:04:00
[email protected]
web.nvd.nist.gov
5

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.931

Percentile

99.1%

JSON

Buffer overflow in the DNS Client service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted record response. NOTE: while MS06-041 implies that there is a single issue, there are multiple vectors, and likely multiple vulnerabilities, related to (1) a heap-based buffer overflow in a DNS server response to the client, (2) a DNS server response with malformed ATMA records, and (3) a length miscalculation in TXT, HINFO, X25, and ISDN records.

Affected configurations

Nvd
Node
microsoftwindows_2000sp4fr
OR
microsoftwindows_2003_serverMatch64-bit
OR
microsoftwindows_2003_serverMatchsp1
OR
microsoftwindows_2003_serverMatchsp1itanium
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xpsp1tablet_pc
OR
microsoftwindows_xpsp2tablet_pc
VendorProductVersionCPE
microsoftwindows_2000*cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
microsoftwindows_2003_server64-bitcpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*
microsoftwindows_2003_serversp1cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*
microsoftwindows_2003_serversp1cpe:2.3:o:microsoft:windows_2003_server:sp1:*:itanium:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

Related

checkpoint_advisories 3
cvelist 1
cve 1
cert 1
exploitdb 1
nessus 1
securityvulns 1
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Malformed DNS Resource Records Vulnerability (MS06-041)
2006-08-13 00:00:00
Microsoft DNS Client Malformed ATMA Resource Record Buffer Overrun (MS06-041; CVE-2006-3441)
2006-08-30 00:00:00
Microsoft Windows DNS Client Buffer Overrun (CVE-2006-3441)
2010-06-07 00:00:00
cvelist
cvelist
CVE-2006-3441
2006-08-09 01:00:00
cve
cve
CVE-2006-3441
2006-08-09 01:04:00
cert
cert
Microsoft DNS Client buffer overflow
2006-08-08 00:00:00
exploitdb
exploitdb
Microsoft Windows - DNS Resolution Remote Denial of Service (PoC) (MS06-041)
2006-12-09 00:00:00
nessus
nessus
MS06-041: Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683)
2006-08-08 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS06-041 Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683)
2006-08-08 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.931

Percentile

99.1%

JSON
Related for NVD:CVE-2006-3441
checkpoint_advisories3cvelist1cve1cert1exploitdb1nessus1securityvulns1