What is CVE-2006-3942?

CVE-2006-3942 is a vulnerability in N/a. Published 2006-07-31.

Is CVE-2006-3942 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2006-3942

The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character ter…

EPSS: 0.862 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

20060728 Vulnerability in Server Driver could result in Denial of Service (x_refsource_ISS, third-party-advisory)
ADV-2006-3037 (vdb-entry, x_refsource_VUPEN)
SSRT061264 (x_refsource_HP, vendor-advisory)
20060814 CORE-2006-0714: Microsoft SRV.SYS SMB_COM_TRANSACTION Denial of Service (mailing-list, x_refsource_BUGTRAQ)
19215 (vdb-entry, x_refsource_BID)
MS06-063 (x_refsource_MS, vendor-advisory)
www.coresecurity.com/common/showdoc.php (x_refsource_MISC)
1016606 (vdb-entry, x_refsource_SECTRACK)
21276 (x_refsource_SECUNIA, third-party-advisory)
1017035 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2006-3942?: CVE-2006-3942 is a vulnerability in N/a. Published 2006-07-31.
Is CVE-2006-3942 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.