Vulnerability Name:

CVE-2006-0021 (CCN-24489)

Assigned:2005-11-30
Published:2006-02-14
Updated:2018-10-19
Summary:Microsoft Windows XP SP1 and SP2, and Server 2003 up to SP1, allows remote attackers to cause a denial of service (hang) via an IGMP packet with an invalid IP option, aka the "IGMP v3 DoS Vulnerability."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: BugTraq Mailing List, Mon Oct 22 2007 - 20:03:35 CDT
SYMSA-2007-012: Microsoft Windows CE IGMP Denial of Service

Source: MITRE
Type: CNA
CVE-2006-0021

Source: CCN
Type: SA18853
Microsoft Windows IGMP Denial of Service Vulnerability

Source: SECUNIA
Type: Patch, Vendor Advisory
18853

Source: CCN
Type: SECTRACK ID: 1015629
Microsoft Windows IGMP Processing Bug Lets Remote Users Deny Service

Source: SECTRACK
Type: UNKNOWN
1015629

Source: CCN
Type: ASA-2006-047
Windows Security Updates for February 2006 - (MS06-004 to MS06-010)

Source: CCN
Type: CIAC Information Bulletin Q-128
Vulnerability in TCP/IP

Source: CCN
Type: US-CERT VU#839284
Microsoft Windows TCP/IP fails to properly validate IGMP packets

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#839284

Source: CCN
Type: Microsoft Security Bulletin MS06-007
Vulnerability in TCP/IP Could Allow Denial of Service (913446)

Source: CCN
Type: Microsoft Security Bulletin MS06-032
Vulnerability in TCP/IP Could Allow Remote Code Execution (917953)

Source: CCN
Type: Microsoft Security Bulletin MS08-001
Vulnerabilities in TCP/IP Could Allow Remote Code Execution (941644)

Source: CCN
Type: Microsoft Security Bulletin MS08-004
Vulnerability in Windows TCP/IP Could Allow Denial of Service (946456)

Source: MISC
Type: UNKNOWN
http://www.securiteam.com/exploits/5PP0T0KI0O.html

Source: BUGTRAQ
Type: UNKNOWN
20071023 SYMSA-2007-012: Microsoft Windows CE IGMP Denial of Service

Source: BID
Type: Patch
16645

Source: CCN
Type: BID-16645
Microsoft Windows IGMPv3 Denial of Service Vulnerability

Source: CERT
Type: Third Party Advisory, US Government Resource
TA06-045A

Source: VUPEN
Type: Vendor Advisory
ADV-2006-0576

Source: MS
Type: UNKNOWN
MS06-007

Source: XF
Type: UNKNOWN
win-igmpv3-dos(24489)

Source: XF
Type: UNKNOWN
win-igmpv3-dos(24489)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1310

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1425

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1647

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1662

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:678

Source: EXPLOIT-DB
Type: UNKNOWN
1599

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2003_server:datacenter_64-bit:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:enterprise:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:enterprise_64-bit:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:r2:*:datacenter_64-bit:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:r2:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:standard:*:64-bit:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:standard:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:standard_64-bit:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:web:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:*:embedded:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:*:home:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp1:64-bit:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp1:embedded:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:home:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*
  • OR cpe:/a:microsoft:windows_2003:*:*:*:*:*:*:*:*
  • AND
  • cpe:/o:microsoft:windows_mobile:5.0:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:678
    V
    TCP/IP IGMP v3 Denial of Service (Server 2003,SP1)
    2011-05-16
    oval:org.mitre.oval:def:1662
    V
    TCP/IP IGMP v3 Denial of Service (XP,SP1)
    2011-05-16
    oval:org.mitre.oval:def:1310
    V
    TCP/IP IGMP v3 Denial of Service (Server 2003)
    2011-05-16
    oval:org.mitre.oval:def:1425
    V
    TCP/IP IGMP v3 Denial of Service (XP,SP2)
    2011-05-16
    oval:org.mitre.oval:def:1647
    V
    TCP/IP IGMP v3 Denial of Service (64-bit XP,SP1)
    2011-05-16
    BACK
    microsoft windows 2003 server datacenter_64-bit sp1
    microsoft windows 2003 server enterprise
    microsoft windows 2003 server enterprise sp1
    microsoft windows 2003 server enterprise_64-bit
    microsoft windows 2003 server r2
    microsoft windows 2003 server r2
    microsoft windows 2003 server r2 sp1
    microsoft windows 2003 server standard
    microsoft windows 2003 server standard sp1
    microsoft windows 2003 server standard_64-bit
    microsoft windows 2003 server web
    microsoft windows 2003 server web sp1
    microsoft windows xp *
    microsoft windows xp *
    microsoft windows xp *
    microsoft windows xp *
    microsoft windows xp * gold
    microsoft windows xp * sp1
    microsoft windows xp * sp1
    microsoft windows xp * sp1
    microsoft windows xp * sp1
    microsoft windows xp * sp2
    microsoft windows xp * sp2
    microsoft windows xp * sp2
    microsoft windows xp - sp1
    microsoft windows 2003_server
    microsoft windows xp sp2
    microsoft windows 2003 server -
    microsoft windows 2003_server sp1
    microsoft windows 2003_server sp1_itanium
    microsoft windows 2003 *
    microsoft windows mobile 5.0