CVE-2006-3840
N/A
N/A
Summary
The SMB Mailslot parsing functionality in PAM in multiple ISS products with XPU (24.39/1.78/epj/x.x.x.1780), including Proventia A, G, M, Server, and Desktop, BlackICE PC and Server Protection 3.6, and RealSecure 7.0, allows remote attackers to cause a denial of service (infinite loop) via a crafted SMB packet that is not properly handled by the SMB_Mailslot_Heap_Overflow decode.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=3630
- http://www.securityfocus.com/archive/1/441278/100/0/threaded
- http://www.nsfocus.com/english/homepage/research/0607.htm
- http://secunia.com/advisories/21219
- http://www.vupen.com/english/advisories/2006/2996
- http://securitytracker.com/id?1016592
- http://xforce.iss.net/xforce/alerts/id/230
- http://www.securityfocus.com/bid/19178
- http://securitytracker.com/id?1016590
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27965
- http://securitytracker.com/id?1016591
References
- https://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=3630
- http://www.securityfocus.com/archive/1/441278/100/0/threaded
- http://www.nsfocus.com/english/homepage/research/0607.htm
- http://secunia.com/advisories/21219
- http://www.vupen.com/english/advisories/2006/2996
- http://securitytracker.com/id?1016592
- http://xforce.iss.net/xforce/alerts/id/230
- http://www.securityfocus.com/bid/19178
- http://securitytracker.com/id?1016590
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27965
- http://securitytracker.com/id?1016591
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.