ID CVE-2006-5614
Summary Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote attackers to cause a denial of service (svchost.exe crash) via a malformed DNS query, which results in a null pointer dereference.
References
Vulnerable Configurations
  • Microsoft windows_nat_helper_components
    cpe:2.3:a:microsoft:windows_nt_helper_components
  • Microsoft windows xp_sp2 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp2:tablet_pc
CVSS
Base: 2.6 (as of 31-10-2006 - 10:50)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
exploit-db via4
description MS Windows NAT Helper Components (ipnathlp.dll) Remote DoS Exploit. CVE-2006-5614. Dos exploit for windows platform
file exploits/windows/dos/2672.py
id EDB-ID:2672
last seen 2016-01-31
modified 2006-10-28
platform windows
port
published 2006-10-28
reporter h07
source https://www.exploit-db.com/download/2672/
title Microsoft Windows NAT Helper Components ipnathlp.dll Remote DoS Exploit
type dos
metasploit via4
description This module exploits a denial of service vulnerability within the Internet Connection Sharing service in Windows XP.
id MSF:AUXILIARY/DOS/WINDOWS/NAT/NAT_HELPER
last seen 2019-03-24
modified 2017-07-24
published 2006-12-08
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/nat/nat_helper.rb
title Microsoft Windows NAT Helper Denial of Service
refmap via4
bid 20804
exploit-db 2672
misc http://research.eeye.com/html/alerts/zeroday/20061028.html
osvdb 30096
sectrack 1017133
secunia 22592
vupen ADV-2006-4248
xf win-ipnathlp-dos(29917)
Last major update 07-03-2011 - 21:43
Published 30-10-2006 - 20:07
Last modified 18-10-2017 - 21:29
Back to Top