Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-3942Improper Input Validation in Microsoft Windows 2003 Server

CWE-20Improper Input Validation4 documents4 sources
Severity
7.8HIGHNVD
EPSS
86.2%
top 0.60%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Windows 2003 Server
Timeline
PublishedJul 31
Latest updateMay 1

Description

The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the ExecuteTransaction function, possibly related to an "SMB PIPE," aka the "Mailslot DOS" vulnerability. NOTE: the name "Mailslot DOS" was derived from incomplete initial research; the vulnerability is not associa

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-3f78-rrw8-v6hw: The server driver (srv2022-05-01
CVEList
CVE-2006-3942: The server driver (srv2006-07-31

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows - Mailslot Ring0 Memory Corruption (MS06-035)2006-07-21
CVE-2006-3942 — Improper Input Validation in Microsoft | cvebase