x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

MS06-035

Threat LevelHigh threatDamageSevereDistributionNot widespread
Common name:MS06-035
Technical name:MS06-035
Threat level:Medium
Alias:Vulnerability in Server Service, Vulnerabilidad en el servicio de servidor
Type:Vulnerability
Effects:  

It is a group of critical vulnerabilities in Server Service on Windows 2003/XP/2000 computers, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user or to disclose information.

Affected platforms:

Windows 2003/XP/2000

First detected on:July 12, 2006
Detection updated on:July 12, 2006
StatisticsNo

Brief Description 

    

MS06-035 is not categorized as virus, worm, Trojan or backdoor. It is a group of critical vulnerabilities in Server Service in Windows 2003/XP/2000, which allows to remotely execute arbitrary code in the vulnerable computer or disclose information.

  • Mailslot Heap Overflow: remote code execution vulnerability, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.
  • SMB (Server Message Block) Information Disclosure: information disclosure vulnerability, which allows an attacker to view the memory used to store the SMB traffic.

These vulnerabilities are exploited by creating a special network packet and sending it to a vulnerable computer.

Attacks can be launched across the Internet, but a firewall could be used in order to prevent those attacks.

 

If you have a Windows 2003/XP/2000 computer, it is recommendable to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.