CVE-2006-6296

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to Windows 2000 SP4 Microsoft Windows XP versions prior to SP2

Description The issue is related to the RpcGetPrinterData function in the Print Spooler service, which allows remote attackers to cause a denial of service by consuming memory via an RPC request with a large offered value, specifying the output buffer size.

Recommendations For Microsoft Windows 2000, update to at least SP4 to resolve the issue. For Microsoft Windows XP, update to at least SP2 to resolve the issue. As a temporary workaround, consider restricting access to the Print Spooler service to minimize the risk of exploitation.