Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2006-3440 | First vendor Publication | 2006-08-08 |
Vendor | Cve | Last vendor Modification | 2018-10-12 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability." |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3440 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:747 | |||
Oval ID: | oval:org.mitre.oval:def:747 | ||
Title: | Winsock Hostname Vulnerability | ||
Description: | Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-3440 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 1 | |
Os | 3 | |
Os | 3 |
ExploitDB Exploits
id | Description |
---|---|
2006-12-09 | MS Windows DNS Resolution - Remote Denial of Service PoC (MS06-041) |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
27843 | Microsoft Windows Winsock API Hostname Remote Code Execution |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2006-08-11 | IAVM : 2006-B-0011 - Microsoft Windows Winsock and DNS Client Service Vulnerabilities (MS06-041) Severity : Category I - VMSKEY : V0012600 |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-08-08 | Name : Arbitrary code can be executed on the remote host due to a flaw in the DNS cl... File : smb_nt_ms06-041.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:04:16 |
|
2021-04-22 01:04:54 |
|
2020-05-23 00:18:03 |
|
2018-10-13 00:22:34 |
|
2017-10-11 09:23:42 |
|
2016-04-26 14:49:50 |
|
2014-02-17 10:36:21 |
|
2013-11-11 12:37:36 |
|
2013-05-11 11:02:23 |
|