CVE Vulnerabilities

CVE-2006-2371

Published: Jun 13, 2006 | Modified: Apr 30, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the Remote Access Connection Manager service (RASMAN) service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted RPC related requests, that lead to registry corruption and stack corruption, aka the RASMAN Registry Corruption Vulnerability.

Affected Software

Name Vendor Start Version End Version
Windows_2000 Microsoft * *
Windows_2003_server Microsoft datacenter_edition (including) datacenter_edition (including)
Windows_2003_server Microsoft datacenter_edition-sp1 (including) datacenter_edition-sp1 (including)
Windows_2003_server Microsoft datacenter_edition_64-bit (including) datacenter_edition_64-bit (including)
Windows_2003_server Microsoft datacenter_edition_64-bit-sp1 (including) datacenter_edition_64-bit-sp1 (including)
Windows_2003_server Microsoft enterprise_64-bit (including) enterprise_64-bit (including)
Windows_2003_server Microsoft enterprise_edition-sp1 (including) enterprise_edition-sp1 (including)
Windows_2003_server Microsoft enterprise_edition_64-bit (including) enterprise_edition_64-bit (including)
Windows_2003_server Microsoft enterprise_edition_64-bit-sp1 (including) enterprise_edition_64-bit-sp1 (including)
Windows_2003_server Microsoft r2 (including) r2 (including)
Windows_2003_server Microsoft sp1 (including) sp1 (including)
Windows_2003_server Microsoft standard (including) standard (including)
Windows_2003_server Microsoft standard-sp1 (including) standard-sp1 (including)
Windows_2003_server Microsoft standard_64-bit (including) standard_64-bit (including)
Windows_2003_server Microsoft web (including) web (including)
Windows_2003_server Microsoft web-sp1 (including) web-sp1 (including)
Windows_xp Microsoft * *

References