Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:196A97F73EEF3B5D1EFCFB0026B813A8
HistoryAug 11, 2006 - 12:00 a.m.

Windows Server Service buffer overflow

2006-08-1100:00:00
SAINT Corporation
my.saintcorporation.com
17

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.965 High

EPSS

Percentile

99.6%

JSON

Added: 08/11/2006
CVE: CVE-2006-3439
BID: 19409
OSVDB: 27845

Background

The Windows Server Service supports file, print, and named-pipe sharing over the network.

Problem

A buffer overflow vulnerability in the Windows Server Service allows remote attackers to execute arbitrary commands.

Resolution

Apply the patch referenced in Microsoft Security Bulletin 06-040.

References

<http://www.microsoft.com/technet/security/bulletin/ms06-040.mspx&gt;

Limitations

Exploit works on Windows 2000 and Windows XP SP1. Target computer may reboot after connection is closed.

Platforms

Windows 2000
Windows XP

Related

nessus 2
canvas 1
checkpoint_advisories 2
saint 3
securityvulns 1
cert 1
openvas 1
packetstorm 1
nvd 1
cvelist 1
cve 1
trendmicroblog 1
nessus
nessus
MS06-040: Vulnerability in Server Service Could Allow Remote Code Execution (921883) (uncredentialed check)
2006-08-08 00:00:00
MS06-040: Vulnerability in Server Service Could Allow Remote Code Execution (921883)
2006-08-08 00:00:00
canvas
canvas
Immunity Canvas: MS06_040
2006-08-09 01:04:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Server Service RPC Request Buffer Overrun (MS06-040; CVE-2006-3439)
2006-08-13 00:00:00
Microsoft Windows Server Service RPC Request Buffer Overrun (MS06-040; CVE-2006-3439)
2006-08-13 00:00:00
saint
saint
Windows Server Service buffer overflow
2006-08-11 00:00:00
Windows Server Service buffer overflow
2006-08-11 00:00:00
Windows Server Service buffer overflow
2006-08-11 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS06-040 Vulnerability in Server Service Could Allow Remote Code Execution &#40;921883&#41;
2006-08-08 00:00:00
cert
cert
Microsoft Windows Server service buffer overflow
2006-08-08 00:00:00
openvas
openvas
Microsoft Windows Server Service Remote Code Execution Vulnerability (921883)
2011-12-30 00:00:00
packetstorm
packetstorm
Microsoft Server Service NetpwPathCanonicalize Overflow
2009-11-26 00:00:00
nvd
nvd
CVE-2006-3439
2006-08-09 01:04:00
cvelist
cvelist
CVE-2006-3439
2006-08-09 01:00:00
cve
cve
CVE-2006-3439
2006-08-09 01:04:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 17, 2017
2017-04-21 18:23:45

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.965 High

EPSS

Percentile

99.6%

JSON
Related for SAINT:196A97F73EEF3B5D1EFCFB0026B813A8
nessus2canvas1checkpoint_advisories2saint3securityvulns1cert1openvas1packetstorm1nvd1cvelist1cve1trendmicroblog1