OSVDB ID: 27155

Title: Microsoft Windows Server Service SRV.SYS Crafted Request SMB Information Disclosure

Info

Disclosure

Jul 11, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Jul 11, 2006

Description

Windows contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the Server service reuses memory without zeroing it out, which can disclose random information in memory resulting in a loss of confidentiality.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Unknown
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	2000 SP4
		XP SP1
		XP SP2
		XP Professional x64 Edition
	Windows Server	2003
		2003 SP1
		2003 for Itanium
		2003 SP1 for Itanium
		2003 x64 Edition

References

Security Tracker: 1016467
Bugtraq ID: 18891
CVE ID: 2006-1315 (see also: NVD)
Milw0rm: 2057
Exploit Database: 2057
Secunia Advisory ID: 21007
ISS X-Force ID: 26820
Related OSVDB ID: 27154
Microsoft Knowledge Base Article: 917159
VUPEN Advisory: ADV-2006-2753
Keyword: aka "SMB Information Disclosure Vulnerability."
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0231.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0243.html
News Article: http://news.com.com/Attack+code+puts+Windows+PCs+at+risk/2100-7349_3-6098293.html
Microsoft Security Bulletin: MS06-035

Credit

Mike Price - Foundstone
Rafal Wojtczuk - McAfee

Direct URL: http://osvdb.org/27155

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

Windows Server

References

Credit