PT-2006-2005 · Ncp · Ncp Network Communication Secure Client

Publicado

2006-03-02

Atualizado

2018-10-18

CVE-2006-0966

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions NCP Network Communication Secure Client version 8.11 Build 146

Description The issue allows local users to cause a denial of service, resulting in CPU consumption, by providing a large number of arguments to the ncprwsnt.exe executable. This could be due to a buffer overflow.

Recommendations For NCP Network Communication Secure Client version 8.11 Build 146, consider restricting the number of arguments that can be passed to the ncprwsnt.exe executable to prevent CPU consumption. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399CWE-119

Identificadores relacionados

CVE-2006-0966

Produtos afetados

Ncp Network Communication Secure Client

PT-2006-2005 · Ncp · Ncp Network Communication Secure Client

CVE-2006-0966

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6