PT-2006-2005 · Ncp · Ncp Network Communication Secure Client

Published

2006-03-02

Updated

2018-10-18

CVE-2006-0966

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions NCP Network Communication Secure Client version 8.11 Build 146

Description The issue allows local users to cause a denial of service, resulting in CPU consumption, by providing a large number of arguments to the ncprwsnt.exe executable. This could be due to a buffer overflow.

Recommendations For NCP Network Communication Secure Client version 8.11 Build 146, consider restricting the number of arguments that can be passed to the ncprwsnt.exe executable to prevent CPU consumption. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399CWE-119

Related Identifiers

CVE-2006-0966

Affected Products

Ncp Network Communication Secure Client

PT-2006-2005 · Ncp · Ncp Network Communication Secure Client

CVE-2006-0966

Weakness Enumeration

Related Identifiers

Affected Products

References · 6