5

CVE-2006-3880

Exploit

EPSS 19.95%
Published 27.07.2006 01:04:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Small Business Server 2003 allow remote attackers to cause a denial of service (IP stack hang) via a continuous stream of packets on TCP port 135 that have incorrect TCP header checksums and random numbers in certain TCP header fields, as demonstrated by the Achilles Windows Attack Tool.  NOTE: the researcher reports that the Microsoft Security Response Center has stated "Our investigation which has included code review, review of the TCPDump, and attempts on reproing the issue on multiple fresh installs of various Windows Operating Systems have all resulted in non confirmation.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000

Microsoft ≫ Windows 2000 Updatesp1

Microsoft ≫ Windows 2000 Updatesp2

Microsoft ≫ Windows 2000 Updatesp3

Microsoft ≫ Windows 2000 Updatesp4

Microsoft ≫ Windows 2003 Server Versiondatacenter_edition

Microsoft ≫ Windows 2003 Server Versiondatacenter_edition Updatesp1

Microsoft ≫ Windows 2003 Server Versiondatacenter_edition_64-bit

Microsoft ≫ Windows 2003 Server Versiondatacenter_edition_64-bit Updatesp1

Microsoft ≫ Windows 2003 Server Versionenterprise_64-bit

Microsoft ≫ Windows 2003 Server Versionenterprise_edition Updatesp1

Microsoft ≫ Windows 2003 Server Versionenterprise_edition_64-bit

Microsoft ≫ Windows 2003 Server Versionr2 Editiondatacenter_64-bit

Microsoft ≫ Windows 2003 Server Versionsp1 Editionenterprise

Microsoft ≫ Windows 2003 Server Versionstandard

Microsoft ≫ Windows 2003 Server Versionstandard Updatesp1

Microsoft ≫ Windows 2003 Server Versionstandard_64-bit

Microsoft ≫ Windows 2003 Server Versionweb

Microsoft ≫ Windows 2003 Server Versionweb Updatesp1

Microsoft ≫ Windows Xp Edition64-bit

Microsoft ≫ Windows Xp Editionembedded

Microsoft ≫ Windows Xp Editionhome

Microsoft ≫ Windows Xp Editionmedia_center

Microsoft ≫ Windows Xp Updategold Editionprofessional

Microsoft ≫ Windows Xp Updatesp1 Edition64-bit

Microsoft ≫ Windows Xp Updatesp1 Editionembedded

Microsoft ≫ Windows Xp Updatesp1 Editionhome

Microsoft ≫ Windows Xp Updatesp1 Editionmedia_center

Microsoft ≫ Windows Xp Updatesp2 Editionhome

Microsoft ≫ Windows Xp Updatesp2 Editionmedia_center

Microsoft ≫ Windows Xp Updatesp2 Editiontablet_pc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	19.95%	0.953

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://securityreason.com/securityalert/1282

http://www.securityfocus.com/archive/1/441007/100/0/threaded

http://www.securityfocus.com/bid/19135

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2006-3880

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3880

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3880

EUVD