27644 : Microsoft Windows Server Driver (srv.sys) Crafted SMB Packet NULL Dereference DoS
Printer | http://osvdb.org/27644 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
17	3072	almost 7 years ago	over 2 years ago	13 times	100%

Timeline

Disclosure Date
2006-07-28

Description

Windows contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted SMB packet to the Server service (srv.sys), and will result in loss of availability for the platform.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Vendor Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Microsoft Corporation	Windows	2000 SP4
		XP SP1
		XP SP2
		XP Professional x64 Edition
	Windows Server	2003
		2003 SP1
		2003 for Itanium
		2003 SP1 for Itanium

References

Security Tracker: 1016606 1017035
Bugtraq ID: 19215
CVE ID: 2006-3942 (see also: NVD)
Milw0rm: 2057
Exploit Database: 2057
Secunia Advisory ID: 21276
SCIP VulDB ID: 2415
Metasploit ID: 27644
ISS X-Force ID: 27999
Related OSVDB ID: 29439
Microsoft Knowledge Base Article: 923414
VUPEN Advisory: ADV-2006-3037
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0318.html
http://seclists.org/bugtraq/2006/Aug/306
http://seclists.org/bugtraq/2006/Aug/378
Vendor Specific News/Changelog Entry: http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx
Other Advisory URL: http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10 [ Link is 404 ]
http://www.coresecurity.com/content/microsoft-srvsys-smb-com-transaction-denial-of-service
http://xforce.iss.net/xforce/alerts/id/231
Microsoft Security Bulletin: MS06-063

Tools & Filters

Snort	16066 7035 7036 7037 7038 7039 7040 7041 7042 7043 7044 7045 7046
	22536

Credit

Gerardo Richarte - Core Security Technologies

CVSSv2 Score

CVSSv2 Base Score = 7.8
Source: nvd.nist.gov | Generated: 2006-08-01 | Disagree?

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.