Microsoft Windows XP/2000/2003 - Remote Denial of Service

admin

0
文章

0
评论

2023-12-14 10:46:54 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

Microsoft Windows XP/2000/2003 - Remote Denial of Service

CVE编号

CVE-2006-3880

利用情况

暂无

补丁情况

N/A

披露时间

2006-07-27

漏洞描述

** DISPUTED ** Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Small Business Server 2003 allow remote attackers to cause a denial of service (IP stack hang) via a continuous stream of packets on TCP port 135 that have incorrect TCP header checksums and random numbers in certain TCP header fields, as demonstrated by the Achilles Windows Attack Tool. NOTE: the researcher reports that the Microsoft Security Response Center has stated "Our investigation which has included code review, review of the TCPDump, and attempts on reproing the issue on multiple fresh installs of various Windows Operating Systems have all resulted in non confirmation."

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://securityreason.com/securityalert/1282
http://www.securityfocus.com/archive/1/441007/100/0/threaded
http://www.securityfocus.com/bid/19135

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	microsoft	windows_2000	*	-
	运行在以下环境
	系统	microsoft	windows_2003_server	datacenter_edition	-
	运行在以下环境
	系统	microsoft	windows_2003_server	datacenter_edition_64-bit	-
	运行在以下环境
	系统	microsoft	windows_2003_server	enterprise_64-bit	-
	运行在以下环境
	系统	microsoft	windows_2003_server	enterprise_edition	-
	运行在以下环境
	系统	microsoft	windows_2003_server	enterprise_edition_64-bit	-
	运行在以下环境
	系统	microsoft	windows_2003_server	r2	-
	运行在以下环境
	系统	microsoft	windows_2003_server	sp1	-
	运行在以下环境
	系统	microsoft	windows_2003_server	standard	-
	运行在以下环境
	系统	microsoft	windows_2003_server	standard_64-bit	-
	运行在以下环境
	系统	microsoft	windows_2003_server	web	-
	运行在以下环境
	系统	microsoft	windows_xp	*	-