2.6
CVSSv2

CVE-2006-5614

Published: 31/10/2006 Updated: 19/10/2017
CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9
VMScore: 310
Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P

Vulnerability Summary

Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote malicious users to cause a denial of service (svchost.exe crash) via a malformed DNS query, which results in a null pointer dereference.

Affected Products

Exploits

#!/usr/bin/python # Microsoft Windows NAT Helper Components (ipnathlpdll) 0day Remote DoS Exploit # Bug discovered by h07 <h07@interiapl> # Tested on XP SP2 Polish # Details: # # Exploit(19216802) --> Microsoft NAT(19216801) --> [Internet] # # [Process svchostexe, module ipnathlp] # --> MOV DL, [EAX] # Exception C0000005 ...
#!/usr/bin/perl ## ## Microsoft Windows NAT Helper Components Remote DoS Exploit (2) ## ************************************************************** ## ## details ## -------- ## Exploit(19216802) --> Microsoft NAT(19216801) --> [Internet] ## ## info ## ----- ## code by x82 <x82_ [at] bk [dot] ru> ## bug by h07 <h07 [at ...

Metasploit Modules

Microsoft Windows NAT Helper Denial of Service

This module exploits a denial of service vulnerability within the Internet Connection Sharing service in Windows XP.

msf > use auxiliary/dos/windows/nat/nat_helper
      msf auxiliary(nat_helper) > show actions
            ...actions...
      msf auxiliary(nat_helper) > set ACTION <action-name>
      msf auxiliary(nat_helper) > show options
            ...show and set options...
      msf auxiliary(nat_helper) > run