CVE-2006-5614

Microsoft Windows NT Helper Components - Denial of Service

Title source: rule

Description

Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote attackers to cause a denial of service (svchost.exe crash) via a malformed DNS query, which results in a null pointer dereference.

Exploits (3)

exploitdb WORKING POC VERIFIED

by h07 · pythondoswindows

https://www.exploit-db.com/exploits/2672

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by x82 · perldoswindows

https://www.exploit-db.com/exploits/2682

View Code ZIP pw:eip

metasploit WORKING POC

by MC · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/nat/nat_helper.rb

View Code ZIP pw:eip

References (8)

[Various Sources] http://research.eeye.com/html/alerts/zeroday/20061028.html

[Vendor Advisory] http://secunia.com/advisories/22592

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/29917

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/20804

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2672

[Third Party Advisory, VDB Entry] http://www.osvdb.org/30096

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1017133

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/4248

Scores

EPSS 0.8842

EPSS Percentile 99.5%

Classification

Status draft

Affected Products (2)

microsoft/windows_nt_helper_components

microsoft/windows_xp

Timeline

Published Oct 31, 2006

Tracked Since Feb 18, 2026