OSVDB ID: 27644

Title: Microsoft Windows Server Driver (srv.sys) Crafted SMB Packet NULL Dereference DoS

Info

Disclosure

Jul 28, 2006

Discovery

Unknown

Dates

Exploit

Jul 12, 2006

Solution

Unknown

Description

Windows contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted SMB packet to the Server service (srv.sys), and will result in loss of availability for the platform.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Microsoft Corporation	Windows	2000 SP4
		XP SP1
		XP SP2
		XP Professional x64 Edition
	Windows Server	2003
		2003 SP1
		2003 for Itanium
		2003 SP1 for Itanium

References

Security Tracker: 1016606 1017035
Bugtraq ID: 19215
CVE ID: 2006-3942 (see also: NVD)
Milw0rm: 2057
Exploit Database: 2057
Secunia Advisory ID: 21276
SCIP VulDB ID: 2415
Metasploit ID: 27644
ISS X-Force ID: 27999
Related OSVDB ID: 29439
Microsoft Knowledge Base Article: 923414
VUPEN Advisory: ADV-2006-3037
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0318.html
http://seclists.org/bugtraq/2006/Aug/306
http://seclists.org/bugtraq/2006/Aug/378
Vendor Specific News/Changelog Entry: http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx
Other Advisory URL: http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10 [ Link is 404 ]
http://www.coresecurity.com/content/microsoft-srvsys-smb-com-transaction-denial-of-service
http://xforce.iss.net/xforce/alerts/id/231
Microsoft Security Bulletin: MS06-063

Credit

David Means - Internet Security Systems
Tom Cross - Internet Security Systems
Scott Warfield - Internet Security Systems

Direct URL: http://osvdb.org/27644

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

Windows Server

References

Credit