Unrated severityNVD Advisory· Published Aug 9, 2006· Updated Jun 16, 2026

CVE-2006-3440

Description

Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Microsoft/Windows 2000
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
Microsoft/Windows Server 20033 versions
cpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp1:*:itanium:*:*:*:*:*
Microsoft/Windows Xp3 versions
cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*
Microsoft/Windowsllm-fuzzy
Range: 2000 SP4, XP SP1, XP SP2, Server 2003 SP1

Patches

Vulnerability mechanics

References

www.kb.cert.org/vuls/id/908276nvdPatchUS Government Resource
www.us-cert.gov/cas/techalerts/TA06-220A.htmlnvdPatchUS Government Resource
secunia.com/advisories/21394nvd
securitytracker.com/idnvd
www.securityfocus.com/bid/19319nvd
www.vupen.com/english/advisories/2006/3211nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-041nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A747nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.048
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000