Alerts
Alerts
Zero-Day Tracker
Common Name:
Server NETAPI32
Date Disclosed:
8/8/2006
Date Patched:
8/8/2006
Vendor:
Microsoft
Application:
Windows 2000
Windows XP
Windows 2003
Description:
A buffer overflow within netapi32.dll allows a remote attacker to execute arbitrary code as SYSTEM on a remote host.
Severity:
High
Code Execution:
Yes
Impact:
Arbitrary code execution as SYSTEM
This vulnerability can be exploited anonymously against Windows 2000, Windows XP, and Windows 2003. This vulnerability has a potentially high 'wormable' impact because of the ease of exploitation and wide-range of available targets.
Mitigation:
Since this vulnerability is patched, the primary mitigation for this vulnerability would be to apply MS06-040. Other mitigation (suggested by Microsoft) included blocking TCP ports 139 and 445, but because this disables remote management of hosts, eEye does not suggest this mitigation technique.
Protection:
Patch:
Microsoft Patch - MS06-040
Links:
CVE-2006-3439
First Public PoC Code Disclosure (Metasploit Plugin)
Status:
8/8/2006: Patched - MS06-040
Common Name:
Server NETAPI32
Date Disclosed:
8/8/2006
Date Patched:
8/8/2006
Vendor:
Microsoft
Application:
Windows 2000
Windows XP
Windows 2003
Description:
A buffer overflow within netapi32.dll allows a remote attacker to execute arbitrary code as SYSTEM on a remote host.
Severity:
High
Code Execution:
Yes
Impact:
Arbitrary code execution as SYSTEM
This vulnerability can be exploited anonymously against Windows 2000, Windows XP, and Windows 2003. This vulnerability has a potentially high 'wormable' impact because of the ease of exploitation and wide-range of available targets.
Mitigation:
Since this vulnerability is patched, the primary mitigation for this vulnerability would be to apply MS06-040. Other mitigation (suggested by Microsoft) included blocking TCP ports 139 and 445, but because this disables remote management of hosts, eEye does not suggest this mitigation technique.
Protection:
- eEye's Blink® Personal Edition protects from this vulnerability.
- eEye's Blink® Professional Edition protects from this vulnerability.
- eEye's Retina® Network Security Scanner scans devices to detect for this vulnerability.
Patch:
Microsoft Patch - MS06-040
Links:
CVE-2006-3439
First Public PoC Code Disclosure (Metasploit Plugin)
Status:
8/8/2006: Patched - MS06-040
