CyberSec.Space Logo
Back to CVE Browser

CVE-2006-3942

HIGH
7.8
CVSS Severity Score
EPSS Score0.0710%
EPSS Percentile33.79th
PublishedJul 31, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the ExecuteTransaction function, possibly related to an "SMB PIPE," aka the "Mailslot DOS" vulnerability. NOTE: the name "Mailslot DOS" was derived from incomplete initial research; the vulnerability is not associated with a mailslot.

Affected Platforms (CPE)

πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2003 Server

= 64-bit
πŸ’»
Microsoft

Windows 2003 Server

= itanium
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= sp1
πŸ’»
Microsoft

Windows 2003 Server

= sp1
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions

References & Advisories

πŸ”— http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx
πŸ”— http://secunia.com/advisories/21276
πŸ”— http://securitytracker.com/id?1016606
πŸ”— http://securitytracker.com/id?1017035
πŸ”— http://www.coresecurity.com/common/showdoc.php?idx=562&idxseccion=10
πŸ”— http://www.osvdb.org/27644
πŸ”— http://www.securityfocus.com/archive/1/443287/100/200/threaded
πŸ”— http://www.securityfocus.com/archive/1/449179/100/0/threaded

Related Vulnerabilities

CVE-2000-103410.0

Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a ...

CVE-2000-006110.0

Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document h...

CVE-2000-022210.0

The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote ...

CVE-2000-107110.0

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote...