CVE-2006-3942

Published: Jul 31, 2006Modified: Apr 16, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the ExecuteTransaction function, possibly related to an "SMB PIPE," aka the "Mailslot DOS" vulnerability. NOTE: the name "Mailslot DOS" was derived from incomplete initial research; the vulnerability is not associated with a mailslot.

Affected (9)

Products: Microsoft: Windows 2000, Windows 2003 Server, Windows Xp

3 products

Windows 2003 Server

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 2000	All versions
Microsoft Windows 2003 Server	Version 64-bit
Microsoft Windows 2003 Server	Version itanium
Microsoft Windows 2003 Server	Version r2
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (28)

http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx

Source: cve@mitre.org

http://secunia.com/advisories/21276

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1016606

Source: cve@mitre.org

http://securitytracker.com/id?1017035

Source: cve@mitre.org

http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10

Source: cve@mitre.org

http://www.osvdb.org/27644

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/443287/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/449179/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/19215

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/3037

Source: cve@mitre.org

Vendor Advisory

http://xforce.iss.net/xforce/alerts/id/231

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-063

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/27999

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A428

Source: cve@mitre.org

http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/21276

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1016606

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1017035

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/27644

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/443287/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/449179/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/19215

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/3037

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://xforce.iss.net/xforce/alerts/id/231

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-063

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/27999

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A428

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.