CVE-2006-3441

NONECVSS 0.0

0.0

Buffer overflow in the DNS Client service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted record response. NOTE: while MS06-041 implies that there is a single issue, there are multiple vectors, and likely multiple vulnerabilities, related to (1) a heap-based buffer overflow in a DNS server response to the client, (2) a DNS server response with malformed ATMA records, and (3) a length miscalculation in TXT, HINFO, X25, and ISDN records.

🔗 References (30)

secure@microsofthttp://secunia.com/advisories/21394
secure@microsofthttp://securitytracker.com/id?1016653
secure@microsofthttp://www.kb.cert.org/vuls/id/794580
secure@microsofthttp://www.osvdb.org/27844
secure@microsofthttp://www.securityfocus.com/bid/19404
secure@microsofthttp://www.us-cert.gov/cas/techalerts/TA06-220A.html
secure@microsofthttp://www.vupen.com/english/advisories/2006/3211
secure@microsofthttp://xforce.iss.net/xforce/alerts/id/233
secure@microsofthttp://xforce.iss.net/xforce/alerts/id/234
secure@microsofthttp://xforce.iss.net/xforce/alerts/id/235
secure@microsofthttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-041
secure@microsofthttps://exchange.xforce.ibmcloud.com/vulnerabilities/24586
secure@microsofthttps://exchange.xforce.ibmcloud.com/vulnerabilities/28013
secure@microsofthttps://exchange.xforce.ibmcloud.com/vulnerabilities/28240
secure@microsofthttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A723

Is Your Infrastructure Affected by CVE-2006-3441?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-3441

📅 Published

🔄 Last Modified

🔗 References (30)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-3441?