Vulnerability Description
Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote attackers to cause a denial of service (svchost.exe crash) via a malformed DNS query, which results in a null pointer dereference.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Nt Helper Components | All versions |
| Microsoft | Windows Xp | All versions |
References
- http://research.eeye.com/html/alerts/zeroday/20061028.html
- http://secunia.com/advisories/22592Vendor Advisory
- http://securitytracker.com/id?1017133
- http://www.osvdb.org/30096
- http://www.securityfocus.com/bid/20804
- http://www.vupen.com/english/advisories/2006/4248
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29917
- https://www.exploit-db.com/exploits/2672
- http://research.eeye.com/html/alerts/zeroday/20061028.html
- http://secunia.com/advisories/22592Vendor Advisory
- http://securitytracker.com/id?1017133
- http://www.osvdb.org/30096
- http://www.securityfocus.com/bid/20804
- http://www.vupen.com/english/advisories/2006/4248
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29917
FAQ
What is CVE-2006-5614?
CVE-2006-5614 is a vulnerability with a CVSS score of 2.6 (LOW). Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote attackers to cause a denial of service (svchost.exe crash) via a ma...
How severe is CVE-2006-5614?
CVE-2006-5614 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5614?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Nt Helper Components, Microsoft Windows Xp.