Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3440

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-3440
Last Modified 07 Mar 2011 09:38:39
Published 08 Aug 2006 09:04:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3440

Summary

Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server 64-bit

  • Microsoft Windows 2003 Server Sp1

  • Microsoft Windows Xp


References

CERT - TA06-220A

CERT-VN - VU#908276

MS - MS06-041

VUPEN - ADV-2006-3211

BID - 19319

SECTRACK - 1016653

SECUNIA - 21394


Last Updated: 27 May 2016 10:43:00