CERT-In:Indian Computer Emergency Response Team

HOME > VULNERABILITY NOTES

VULNERABILITY NOTES

CERT-In Vulnerability Note CIVN-2006-134
Microsoft Windows Workstation Service Denial of Service Vulnerability

Original Issue Date: December 28, 2006

Severity Rating: Medium

System Affected

Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 1
Microsoft Windows XP Service Pack 2
Microsoft Windows XP Professional x64 Edition

Overview

A Denial of Service vulnerability has been reported in Microsoft Windows Workstation Service that could be exploited by an attacker to crash the system.

Description

The vulnerability is caused due to an error in workstation service while handling specially crafted "NetrWkstaUserEnum()" requests.

The attacker could exploit this vulnerability by creating and sending specially crafted messages to vulnerable system. The messages could then be used to crash or exhaust all available memory resource to cause denial of service condition.

WorkArounds

Block TCP port 139 and 445 at the firewall
Use a personal firewall
Enable advanced TCP/IP filtering on systems.
Block the affected ports by using IPSec on the affected systems.

Reference

FrSIRT
http://www.frsirt.com/english/advisories/2006/5142

CVE Name
CVE-2006-6723

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003

Home || Feedback || FAQ || Disclaimer

CERT-In Vulnerability Note CIVN-2006-134 Microsoft Windows Workstation Service Denial of Service Vulnerability

CERT-In Vulnerability Note CIVN-2006-134
Microsoft Windows Workstation Service Denial of Service Vulnerability