CyberSec.Space Logo
CVEブラウザに戻る

CVE-2006-2372

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile1.23th
Published2006年7月11日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the DHCP Client service for Microsoft Windows 2000 SP4, Windows XP SP1 and SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via a crafted DHCP response.

Affected Platforms (CPE)

📦
Microsoft

Dhcp Client Service

All versions

References & Advisories

🔗 http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0222.html
🔗 http://secunia.com/advisories/21010
🔗 http://securityreason.com/securityalert/1201
🔗 http://securitytracker.com/id?1016468
🔗 http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_Microsoft_Windows_DHCP_Client_Service_Remote_Buffer_Overflow.pdf
🔗 http://www.kb.cert.org/vuls/id/257164
🔗 http://www.osvdb.org/27151
🔗 http://www.securityfocus.com/archive/1/439675/100/0/threaded

関連する脆弱性情報

CVE-2014-627710.0

GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows ...

CVE-2007-006210.0

Integer overflow in the ISC dhcpd 3.0.x before 3.0.7 and 3.1.x before 3.1.1; and the DHCP server in EMC VMware Workstation before ...

CVE-2021-318849.8

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), AP...

CVE-2020-16568.8

The DHCPv6 Relay-Agent service, part of the Juniper Enhanced jdhcpd daemon shipped with Juniper Networks Junos OS has an Improper ...