PCWorks: Windows Multiple IPv6 Denial of Service Vulnerabilities

Thread: PCWorks: Windows Multiple IPv6 Denial of Service Vulnerabilities

Search this list only Search all lists
PCWorks: Windows Multiple IPv6 Denial of Service Vulnerabilities
	2006-10-12 12:30:31
Not needed if IPv6 is not installed. ----- Original Message ----- TITLE: Microsoft Windows Multiple IPv6 Denial of Service Vulnerabilities SECUNIA ADVISORY ID: SA22341 VERIFY ADVISORY: http://secunia.c om/advisories/22341/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote OPERATING SYSTEM: Microsoft Windows XP Professional http://secunia.com/pro duct/22/ Microsoft Windows XP Home Edition http://secunia.com/pro duct/16/ Microsoft Windows Server 2003 Web Edition http://secunia.com/p roduct/1176/ Microsoft Windows Server 2003 Standard Edition http://secunia.com/p roduct/1173/ Microsoft Windows Server 2003 Enterprise Edition http://secunia.com/p roduct/1174/ Microsoft Windows Server 2003 Datacenter Edition http://secunia.com/p roduct/1175/ DESCRIPTION: Three vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service). 1) A vulnerability exists in the IPv6 Windows implementation of ICMP which, if successfully exploited, results in the system dropping an existing connection. 2) A vulnerability exists in the IPv6 Windows implementation of TCP which, if successfully exploited, results in the system dropping an existing TCP connection. 3) A vulnerability exists in the IPv6 implementation of TCP/IP which, if successfully exploited, could cause the system to stop responding. Successful exploitation of the vulnerabilities requires IPv6 to be configured (not enabled by default). SOLUTION: Apply patches. Microsoft Windows XP SP1/SP2: http://www.microsof t.com/downloads/details.aspx?FamilyId=9fd73d12-ff7c-411d-944 d-a6f147b20775 Microsoft Windows XP Professional x64 Edition: http://www.microsof t.com/downloads/details.aspx?FamilyId=fc98f55c-520e-4a68-a3c 3-0df51c6122bb Microsoft Windows Server 2003 (with or without SP1): http://www.microsof t.com/downloads/details.aspx?FamilyId=102591a0-2b58-497b-bc2 0-593571b96e9c Microsoft Windows Server 2003 (Itanium, with or without SP1): http://www.microsof t.com/downloads/details.aspx?FamilyId=12515d47-134d-4d1f-9ae 7-f0a7167ec424 Microsoft Windows Server 2003 x64 Edition: http://www.microsof t.com/downloads/details.aspx?FamilyId=c5faba34-48f5-4875-a0f a-6b8207f9b276 PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: MS06-064 (KB922819): http://www.microsoft.com/technet/security/Bullet in/MS06-064.mspx ============= PCWorks Mailing List ================= Don't see your post? Check our posting guidelines & make sure you've followed proper posting procedures, http://pcworkers.com/r ules.htm Contact list owner <owner-pcworksimagicomm.com> Unsubscribing and other changes: http://pcworkers.com =====================================================

[1]

about | contact Other archives ( Real Estate discussion Medical topics )