Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 27/07/2006 Updated: 17/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The SMB Mailslot parsing functionality in PAM in multiple ISS products with XPU (24.39/1.78/epj/x.x.x.1780), including Proventia A, G, M, Server, and Desktop, BlackICE PC and Server Protection 3.6, and RealSecure 7.0, allows remote malicious users to cause a denial of service (infinite loop) via a crafted SMB packet that is not properly handled by the SMB_Mailslot_Heap_Overflow decode.

Vulnerable Product	Search on Vulmon	Subscribe to Product
iss realsecure desktop 7.0epk
iss realsecure network 7.0
iss realsecure server sensor 7.0
iss blackice pc protection 3.6cpk
iss blackice server protection 3.6cpk
iss proventia desktop 8.0.675.1790
iss proventia desktop 8.0.812.1790
iss proventia a series xpu
iss proventia g series xpu
iss proventia m series xpu
iss proventia server 1.0.914.1880

CWE-399 https://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=3630 http://xforce.iss.net/xforce/alerts/id/230 http://www.nsfocus.com/english/homepage/research/0607.htm http://www.securityfocus.com/bid/19178 http://securitytracker.com/id?1016592 http://securitytracker.com/id?1016590 http://securitytracker.com/id?1016591 http://secunia.com/advisories/21219 http://www.vupen.com/english/advisories/2006/2996 https://exchange.xforce.ibmcloud.com/vulnerabilities/27965 http://www.securityfocus.com/archive/1/441278/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-3840

Vulnerability Summary

References

Vulmon Search

About

Products

Connect