| Vulnerability Name: | CVE-2006-2374 (CCN-26830) | ||||||||||||||||||||||||||||
| Assigned: | 2006-06-13 | ||||||||||||||||||||||||||||
| Published: | 2006-06-13 | ||||||||||||||||||||||||||||
| Updated: | 2018-10-12 | ||||||||||||||||||||||||||||
| Summary: | The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability." | ||||||||||||||||||||||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||||||||||||||||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||||||||||||||||||||||
| Vulnerability Type: | CWE-399 | ||||||||||||||||||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2006-2374 Source: CCN Type: SA20635 Windows SMB Denial of Service and Privilege Escalation Source: SECUNIA Type: Third Party Advisory 20635 Source: CCN Type: SECTRACK ID: 1016288 Windows Server Message Block Processing Bugs Let Local Users Gain Elevated Privileges or Deny Service Source: SECTRACK Type: Third Party Advisory, VDB Entry 1016288 Source: CCN Type: ASA-2006-126 Windows Security Updates for June 2006 - (MS06-021 - MS06-032) Source: IDEFENSE Type: Not Applicable 20060613 Windows MRXSMB.SYS MrxSmbCscIoctlCloseForCopyChunk DoS Source: CCN Type: Microsoft Security Bulletin MS06-030 Vulnerability in Server Message Block Could Allow Elevation of Privilege (914389) Source: CCN Type: Microsoft Security Bulletin MS08-068 Vulnerability in SMB Could Allow Remote Code Execution (957097) Source: CCN Type: Microsoft Security Bulletin MS10-006 Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251) Source: CCN Type: Microsoft Security Bulletin MS10-020 Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232) Source: CCN Type: Microsoft Security Bulletin MS11-019 Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455) Source: CCN Type: Microsoft Security Bulletin MS11-043 Vulnerability in SMB Client Could Allow Remote Code Execution (2536276) Source: OSVDB Type: Broken Link 26439 Source: CCN Type: OSVDB ID: 26439 Microsoft Windows SMB MRXSMB.SYS MrxSmbCscIoctlCloseForCopyChunk Remote DoS Source: BID Type: Exploit, Patch, Third Party Advisory, VDB Entry 18357 Source: CCN Type: BID-18357 Microsoft SMB Driver Local Denial Of Service Vulnerability Source: VUPEN Type: Vendor Advisory ADV-2006-2327 Source: MS Type: UNKNOWN MS06-030 Source: XF Type: Third Party Advisory, VDB Entry win-smb-dos(26830) Source: XF Type: UNKNOWN win-smb-dos(26830) Source: CCN Type: iDefense Advisory: 06.13.06 Windows MRXSMB.SYS MrxSmbCscIoctlCloseForCopyChunk DoS Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:1827 Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:1841 Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:1850 Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:1979 Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:2030 Source: OVAL Type: Third Party Advisory oval:org.mitre.oval:def:2060 | ||||||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||||||