Proventia 'SMB_MailSlot_Heap_Overflow Decode' Parsing Error Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1016592
|
|
SecurityTracker URL: http://securitytracker.com/id?1016592
|
|
CVE Reference: CVE-2006-3840
(Links to External Site)
|
Date: Jul 27 2006
|
Impact: Denial of service via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): A, G, M; also Proventia Server 1.0 and Proventia Desktop 8.0
|
Description: A vulnerability was reported in Proventia. A remote user can cause denial of service conditions.
A vulnerability resides in the July XPUs in the virtual patch protection against the vulnerability described in Microsoft Security
Bulletin MS06-035. A remote user can send valid SMB Mailslot data to trigger a protocol parsing error and cause the target protocol
analysis module to stop responding.
ISS credits NSFOCUS Security Team with reporting this vulnerability.
|
Impact: A remote user can cause denial of service conditions.
|
Solution: The vendor has issued a fix (Proventia A Series, XPU 24.40; Proventia G Series, XPU 24.40/1.79; Proventia M Series, XPU 1.79; Proventia
Server 1.0.914.1880; Proventia Desktop 8.0.812.1790/8.0.675.1790).
The ISS advisory is available at:
http://xforce.iss.net/xforce/alerts/id/230
Additional
information is available at:
https://iss.custhelp.com/cgi-bin/iss.cfg/php/enduser/std_adp.php?p_faqid=3630
|
Vendor URL: xforce.iss.net/xforce/alerts/id/230 (Links to External Site)
|
Cause: Input validation error, State error
|
|
Message History:
None.
|
Source Message Contents
|
Date: Thu, 27 Jul 2006 02:57:49 -0400
Subject: Protocol Parsing Bug in SMB Mailslot Parsing in ISS Products
|
http://xforce.iss.net/xforce/alerts/id/230
CVE-2006-3840
The following products are affected:
RealSecure, Proventia, and BlackICE
|
|
