PT-2006-7324 · Microsoft · Windows 2000+1

H07

Published

2006-12-26

Updated

2017-10-19

CVE-2006-6723

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4 and XP SP2

Description: The issue allows remote attackers to cause a denial of service, specifically memory consumption, by sending a large maxlen value in a NetrWkstaUserEnum RPC request to the Workstation service.

Recommendations: For Microsoft Windows 2000 SP4 and XP SP2, at the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2006-6723

Affected Products

Windows 2000

Windows Xp

PT-2006-7324 · Microsoft · Windows 2000+1

CVE-2006-6723

Weakness Enumeration

Related Identifiers

Affected Products

References · 6