Vulnerability Name:

CVE-2006-1315 (CCN-26820)

Assigned:2006-07-11
Published:2006-07-11
Updated:2018-10-18
Summary:The Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to obtain sensitive information via crafted requests that leak information in SMB buffers, which are not properly initialized, aka "SMB Information Disclosure Vulnerability."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: CCN
Type: Full-Disclosure Mailing List, Tue Jul 11 2006 - 17:23:39 CDT
Microsoft SMB Information Disclosure Vulnerability CVE-2006-1315

Source: CCN
Type: Full-Disclosure Mailing List, Wed Jul 12 2006 - 07:53:56 CDT
Repost of Microsoft SMB Information Disclosure Vulnerability CVE-2006-1315

Source: MITRE
Type: CNA
CVE-2006-1315

Source: CCN
Type: SA21007
Microsoft Windows Server Service Two Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
21007

Source: CCN
Type: SECTRACK ID: 1016467
Windows Server Service Buffer Overflows Let Remote Users View SMB Information and Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1016467

Source: CCN
Type: ASA-2006-135
Windows Security Updates for July 2006 - (MS06-033 - MS06-039)

Source: CCN
Type: Microsoft Security Bulletin MS15-083
Vulnerability in Server Message Block Could Allow Remote Code Execution (3073921)

Source: CCN
Type: Microsoft Security Bulletin MS16-114
Security Update for Windows SMBv1 Server (3185879)

Source: CCN
Type: Microsoft Security Bulletin MS17-010
Security Update for Windows SMB Server (4013389)

Source: CCN
Type: US-CERT VU#333636
Microsoft Server Service may disclose information used to store SMB traffic

Source: CERT-VN
Type: US Government Resource
VU#333636

Source: CCN
Type: Microsoft Security Bulletin MS06-035
Vulnerability in Server Service Could Allow Remote Code Execution (917159)

Source: CCN
Type: Microsoft Security Bulletin MS06-063
Vulnerability in Server Service Could Allow Denial of Service and Remote Code Execution (923414)

Source: CCN
Type: Microsoft Security Bulletin MS08-063
Vulnerability in SMB Could Allow Remote Code Execution (957095)

Source: CCN
Type: Microsoft Security Bulletin MS09-001
Vulnerabilities in SMB Could Allow Remote Code Execution (958687)

Source: CCN
Type: Microsoft Security Bulletin MS10-012
Vulnerabilities in SMB Server Could Allow Remote Code Execution (971468)

Source: CCN
Type: Microsoft Security Bulletin MS10-054
Vulnerabilities in SMB Server Could Allow Remote Code Execution (982214)

Source: CCN
Type: Microsoft Security Bulletin MS11-020
Vulnerability in SMB Server Could Allow Remote Code Execution (2508429)

Source: OSVDB
Type: UNKNOWN
27155

Source: CCN
Type: OSVDB ID: 27155
Microsoft Windows Server Service SRV.SYS Crafted Request SMB Information Disclosure

Source: BUGTRAQ
Type: UNKNOWN
20060711 SMB Information Disclosure Vulnerability

Source: BID
Type: UNKNOWN
18891

Source: CCN
Type: BID-18891
Microsoft Windows Server Driver Remote Information Disclosure Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2006-2753

Source: MS
Type: UNKNOWN
MS06-035

Source: XF
Type: UNKNOWN
win-smb-information-disclosure(26820)

Source: XF
Type: UNKNOWN
win-smb-information-disclosure(26820)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:3

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:server_service:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*
  • OR cpe:/a:microsoft:windows_2003:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:3
    V
    		SMB Information Disclosure Vulnerability
    2011-05-09
    BACK
    microsoft server service *
    microsoft windows xp - sp1
    microsoft windows 2000 - sp4
    microsoft windows 2003_server
    microsoft windows xp sp2
    microsoft windows 2003 server -
    microsoft windows 2003_server sp1
    microsoft windows 2003_server sp1_itanium
    microsoft windows 2003 *