7.5
CVE-2006-1314
- EPSS 79.77%
- Published 11.07.2006 21:05:00
- Last modified 03.04.2025 01:03:51
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
Heap-based buffer overflow in the Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to execute arbitrary code via crafted first-class Mailslot messages that triggers memory corruption and bypasses size restrictions on second-class Mailslot messages.
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ Windows 2000 Updatesp4 Langfr
Microsoft ≫ Windows 2003 Server Version64-bit
Microsoft ≫ Windows 2003 Server Versionitanium
Microsoft ≫ Windows 2003 Server Versionr2
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp1 Editionitanium
Microsoft ≫ Windows Xp Edition64-bit
Microsoft ≫ Windows Xp Updatesp1 Editiontablet_pc
Microsoft ≫ Windows Xp Updatesp2 Editiontablet_pc
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 79.77% | 0.991 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|