CVE-2006-2380
- EPSS 17.75%
- Veröffentlicht 13.06.2006 19:06:00
- Zuletzt bearbeitet 16.06.2026 22:24:53
Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication over SSL, which allows remote attackers to spoof an RPC server, aka the "RPC Mutual Authentication Vulnerability."
CVE-2006-2334
- EPSS 4.36%
- Veröffentlicht 12.05.2006 00:02:00
- Zuletzt bearbeitet 16.06.2026 22:24:48
The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent attackers to create files that cann...
CVE-2006-0034
- EPSS 30.54%
- Veröffentlicht 10.05.2006 02:14:00
- Zuletzt bearbeitet 16.06.2026 22:19:45
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code v...
- EPSS 29.72%
- Veröffentlicht 10.05.2006 02:14:00
- Zuletzt bearbeitet 16.06.2026 22:22:10
Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of ...
CVE-2006-0012
- EPSS 24.07%
- Veröffentlicht 12.04.2006 00:02:00
- Zuletzt bearbeitet 16.06.2026 22:19:42
Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "...
CVE-2006-1591
- EPSS 7%
- Veröffentlicht 03.04.2006 10:04:00
- Zuletzt bearbeitet 16.06.2026 22:23:15
Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file.
CVE-2006-0988
- EPSS 54.79%
- Veröffentlicht 03.03.2006 11:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:47
The default configuration of the DNS Server service on Windows Server 2003 and Windows 2000, and the Microsoft DNS Server service on Windows NT 4.0, allows recursive queries and provides additional delegation information to arbitrary IP addresses, wh...
CVE-2006-0006
- EPSS 53.6%
- Veröffentlicht 14.02.2006 22:06:00
- Zuletzt bearbeitet 16.06.2026 22:19:41
Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary c...
CVE-2006-0005
- EPSS 43.86%
- Veröffentlicht 14.02.2006 19:06:00
- Zuletzt bearbeitet 16.06.2026 22:19:41
Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML ...
CVE-2006-0488
- EPSS 2.15%
- Veröffentlicht 01.02.2006 02:02:00
- Zuletzt bearbeitet 16.06.2026 22:20:42
The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibly obtain sensitive information, as demonstrated by...