CVEブラウザに戻る

CVE-2006-2373

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0400%

EPSS Percentile27.13th

Published2006年6月13日

Last Modified2026年4月16日

Vulnerability Description

The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to execute arbitrary code by calling the MrxSmbCscIoctlOpenForCopyChunk function with the METHOD_NEITHER method flag and an arbitrary address, possibly for kernel memory, aka the "SMB Driver Elevation of Privilege Vulnerability."

Affected Platforms (CPE)

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows Server 2003

All versions

💻

Microsoft

Windows Server 2003

All versions

💻

Microsoft

Windows Server 2003

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

References & Advisories

🔗 http://secunia.com/advisories/20635

🔗 http://securitytracker.com/id?1016288

🔗 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=408

🔗 http://www.osvdb.org/26440

🔗 http://www.securityfocus.com/bid/18356

🔗 http://www.vupen.com/english/advisories/2006/2327

🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-030

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/26828

関連する脆弱性情報

CVE-2000-103410.0

Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a ...

CVE-2001-014710.0

Buffer overflow in Windows 2000 event viewer snap-in allows attackers to execute arbitrary commands via a malformed field that is ...

CVE-2000-022210.0

The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote ...

CVE-2001-024110.0

Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long pr...