Main Vulnerability Database Exploits ID:1598 - Exploit for Buffer overflow in Windows and Windows Server - CVE-2006-3439

ID:1598 - Exploit for Buffer overflow in Windows and Windows Server - CVE-2006-3439

Published: March 18, 2020

Vulnerability identifier: #VU1225

Vulnerability risk: Critical

CVE-ID: CVE-2006-3439

CWE-ID: CWE-119

Exploitation vector: Remote access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/windows/smb/ms06_040_netapi

Vulnerability description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to boundary error in Microsoft Windows Server Service. A remote attacker can send a specially crafted packet to port 139/TCP or 445/TCP, trigger boundary error and execute arbitrary code with privileges of the current user.

Successful exploitation of the vulnerability results in compromise of vulnerable system.

Note: this vulnerability is being actively exploited.

Remediation

Install update from vendor's website:

Microsoft Windows 2000 Service Pack 4 — Download the update
Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 — Download the update
Microsoft Windows XP Professional x64 Edition — Download the update
Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 — Download the update
Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems — Download the update
Microsoft Windows Server 2003 x64 Edition — Download the update

ID:1598 - Exploit for Buffer overflow in Windows and Windows Server - CVE-2006-3439

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human