Microsoft NAT Helper 'ipnathlp.dll' Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1017133
|
|
SecurityTracker URL: http://securitytracker.com/id?1017133
|
|
CVE Reference: CVE-2006-5614
(Links to External Site)
|
Updated: Jun 3 2008
|
Original Entry Date: Oct 30 2006
|
Impact: Denial of service via network
|
Exploit Included: Yes
|
Version(s): Tested on Windows XP SP2 Polish version
|
Description: A vulnerability was reported in the Microsoft NAT Helper. A remote user can cause denial of service conditions.
A remote user on the internal network (i.e., shared network) can send a specially crafted DNS query to the target system to cause
the target 'ipnathlp.dll' process on the target system to crash.
A demonstration exploit is available at:
http://milw0rm.com/exploits/2672
h07
discovered this vulnerability.
|
Impact: A remote user on the internal network can cause denial of service conditions.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.microsoft.com/ (Links to External Site)
|
Cause: State error
|
Underlying OS: Windows (XP)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 30 Oct 2006 09:11:22 -0500
Subject: Microsoft Windows NAT Helper Components (ipnathlp.dll) 0day Remote DoS Exploit
|
http://milw0rm.com/exploits/2672
|
|
