CVE-2006-1314

N/A Unknown
Published: July 11, 2006 Modified: April 16, 2026
View on NVD

Description

Heap-based buffer overflow in the Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to execute arbitrary code via crafted first-class Mailslot messages that triggers memory corruption and bypasses size restrictions on second-class Mailslot messages.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/21007
Source: secure@microsoft.com
http://securityreason.com/securityalert/1212
Source: secure@microsoft.com
http://www.kb.cert.org/vuls/id/189140
Source: secure@microsoft.com
US Government Resource
http://www.osvdb.org/27154
Source: secure@microsoft.com
http://www.securityfocus.com/archive/1/439773/100/0/threaded
Source: secure@microsoft.com
http://www.securityfocus.com/bid/18863
Source: secure@microsoft.com
http://www.tippingpoint.com/security/advisories/TSRT-06-02.html
Source: secure@microsoft.com
Patch Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA06-192A.html
Source: secure@microsoft.com
US Government Resource
http://www.vupen.com/english/advisories/2006/2753
Source: secure@microsoft.com
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-035
Source: secure@microsoft.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/26818
Source: secure@microsoft.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A600
Source: secure@microsoft.com
http://secunia.com/advisories/21007
Source: af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/1212
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.kb.cert.org/vuls/id/189140
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.osvdb.org/27154
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/439773/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/18863
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.tippingpoint.com/security/advisories/TSRT-06-02.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA06-192A.html
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.vupen.com/english/advisories/2006/2753
Source: af854a3a-2127-422b-91ae-364da2661108
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-035
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/26818
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A600
Source: af854a3a-2127-422b-91ae-364da2661108

24 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
75.8%
99th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

microsoft