CVE-2006-1314

Loading...

General

Score:7.5/10.0
Severity:High
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2006-1315

Published on 11/07/06 - Updated on 18/10/18

Description

Heap-based buffer overflow in the Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to execute arbitrary code via crafted first-class Mailslot messages that triggers memory corruption and bypasses size restrictions on second-class Mailslot messages.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2006-1314
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2006-AVI-283
Renater 2006/VULN396

Exploits

Exploit-DBEDB-2057
SecurityFocusBID-18863

Relative technologies

VendorProduct
microsoftwindows_2000
microsoftwindows_2003_server
microsoftwindows_xp

Share this vulnerability with:

Twitter Facebook LinkedIn Mail