CVE-2006-3351

Published: Jul 6, 2006Modified: Apr 16, 2026

5.4

Vector

AV:N/AC:H/Au:N/C:N/I:N/A:C

Exploitability: 4.9 / Impact: 6.9

Source: NVD

Description

Buffer overflow in Windows Explorer (explorer.exe) on Windows XP and 2003 allows user-assisted attackers to cause a denial of service (repeated crash) and possibly execute arbitrary code via a .url file with an InternetShortcut tag containing a long URL and a large number of "file:" specifiers.

Affected (55)

Products: Microsoft: Windows 2003 Server, Windows Xp

Microsoft

2 products

Windows 2003 Server

Windows Xp

Configuration A

55 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 2003 Server	Version 3.1.0.3270
Microsoft Windows 2003 Server	Version 64-bit
Microsoft Windows 2003 Server	Version datacenter_64-bit sp1
Microsoft Windows 2003 Server	Version datacenter_64-bit sp1_beta_1
Microsoft Windows 2003 Server	Version datacenter_edition
Microsoft Windows 2003 Server	Version datacenter_edition sp1
Microsoft Windows 2003 Server	Version datacenter_edition sp1_beta_1
Microsoft Windows 2003 Server	Version datacenter_edition_64-bit
Microsoft Windows 2003 Server	Version datacenter_edition_64-bit sp1
Microsoft Windows 2003 Server	Version datacenter_edition_64-bit sp1_beta_1
Microsoft Windows 2003 Server	Version enterprise
Microsoft Windows 2003 Server	Version enterprise sp1
Microsoft Windows 2003 Server	Version enterprise sp1_beta_1
Microsoft Windows 2003 Server	Version enterprise_64-bit
Microsoft Windows 2003 Server	Version enterprise_64-bit sp1
Microsoft Windows 2003 Server	Version enterprise_64-bit sp1_beta_1
Microsoft Windows 2003 Server	Version enterprise_edition sp1
Microsoft Windows 2003 Server	Version enterprise_edition sp1_beta_1
Microsoft Windows 2003 Server	Version enterprise_edition_64-bit
Microsoft Windows 2003 Server	Version enterprise_edition_64-bit sp1
Microsoft Windows 2003 Server	Version enterprise_edition_64-bit sp1_beta_1
Microsoft Windows 2003 Server	Version itanium
Microsoft Windows 2003 Server	Version r2
Microsoft Windows 2003 Server	Version r2
Microsoft Windows 2003 Server	Version r2
Microsoft Windows 2003 Server	Version r2 sp1
Microsoft Windows 2003 Server	Version r2 sp1_beta_1
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows 2003 Server	Version standard
Microsoft Windows 2003 Server	Version standard
Microsoft Windows 2003 Server	Version standard sp1
Microsoft Windows 2003 Server	Version standard sp1_beta_1
Microsoft Windows 2003 Server	Version standard_64-bit
Microsoft Windows 2003 Server	Version web
Microsoft Windows 2003 Server	Version web sp1
Microsoft Windows 2003 Server	Version web sp1_beta_1
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	Version ibm_oem_version
Microsoft Windows Xp	Version ibm_oem_version sp1