QwikSec

Security Database

CVE

CWE

Training

CVE-2006-3942

Published: Jul 31, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the ExecuteTransaction function, possibly related to an "SMB PIPE," aka the "Mailslot DOS" vulnerability. NOTE: the name "Mailslot DOS" was derived from incomplete initial research; the vulnerability is not associated with a mailslot.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20060728 Vulnerability in Server Driver could result in Denial of Service

third-party-advisory

x_refsource_ISS

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_HP

20060814 CORE-2006-0714: Microsoft SRV.SYS SMB_COM_TRANSACTION Denial of Service

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_MS

http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10

x_refsource_MISC

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

vendor-advisory

x_refsource_HP

vdb-entry

x_refsource_OSVDB

smb-malformed-pipe(27999)

vdb-entry

x_refsource_XF

oval:org.mitre.oval:def:428

vdb-entry

signature

x_refsource_OVAL

http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.