CVE-2006-0021
35Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 63%
from disclosure to weapon36 days
Published on NVDFeb 14
1st PoC+36d
exploitation probability
63%top 1% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
Microsoft Windows XP SP1 and SP2, and Server 2003 up to SP1, allows remote attackers to cause a denial of service (hang) via an IGMP packet with an invalid IP option, aka the "IGMP v3 DoS Vulnerability."
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/1599unverifiedexploitdbwww.exploit-db.com/exploits/1603unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-007http://secunia.com/advisories/18853http://securitytracker.com/id?1015629https://exchange.xforce.ibmcloud.com/vulnerabilities/24489https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1310https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1425https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1647https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1662https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A678https://www.exploit-db.com/exploits/1599http://www.kb.cert.org/vuls/id/839284http://www.securiteam.com/exploits/5PP0T0KI0O.html