CVSS: 7.5EPSS: 92%CPEs: 29EXPL: 4CVE-2006-2370 – Microsoft RRAS Service - RASMAN Registry Overflow (MS06-025)
https://notcve.org/view.php?id=CVE-2006-2370
Buffer overflow in the Routing and Remote Access service (RRAS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted "RPC related requests," aka the "RRAS Memory Corruption Vulnerability." • https://www.exploit-db.com/exploits/16375 https://www.exploit-db.com/exploits/16364 https://www.exploit-db.com/exploits/1965 https://www.exploit-db.com/exploits/1940 http://secunia.com/advisories/20630 http://securitytracker.com/id?1016285 http://www.kb.cert.org/vuls/id/631516 http://www.osvdb.org/26437 http://www.securityfocus.com/bid/18325 http://www.us-cert.gov/cas/techalerts/TA06-164A.html http://www.vupen.com/english/advisories/2006/2323 https:/&#x •
CVSS: 5.0EPSS: 16%CPEs: 62EXPL: 0CVE-2006-1184
https://notcve.org/view.php?id=CVE-2006-1184
Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which causes an out-of-range memory access, aka the MSDTC Denial of Service Vulnerability. NOTE: this is a variant of CVE-2005-2119. • http://secunia.com/advisories/20000 http://securityreason.com/securityalert/864 http://securitytracker.com/id?1016047 http://www.eeye.com/html/research/advisories/AD20060509b.html http://www.osvdb.org/25336 http://www.securityfocus.com/archive/1/433425/100/0/threaded http://www.securityfocus.com/bid/17905 http://www.vupen.com/english/advisories/2006/1742 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-018 https://exchange.xforce.ibmcloud.com/vulnerabilities& •
CVSS: 7.5EPSS: 77%CPEs: 62EXPL: 0CVE-2006-0034
https://notcve.org/view.php?id=CVE-2006-0034
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or BuildContext opcode, which triggers a bug in the NdrAllocate function, aka the MSDTC Invalid Memory Access Vulnerability. • http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0238.html http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0269.html http://secunia.com/advisories/20000 http://securityreason.com/securityalert/863 http://securitytracker.com/id?1016047 http://www.eeye.com/html/research/advisories/AD20060509a.html http://www.osvdb.org/25335 http://www.securityfocus.com/archive/1/433430/100/0/threaded http://www.securityfocus.com/archive/1/433677/100/0/threaded http://www.se • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.1EPSS: 91%CPEs: 30EXPL: 0CVE-2006-0012
https://notcve.org/view.php?id=CVE-2006-0012
Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "Windows Shell Vulnerability." • http://secunia.com/advisories/19606 http://securitytracker.com/id?1015897 http://www.kb.cert.org/vuls/id/641460 http://www.osvdb.org/24516 http://www.securityfocus.com/bid/17464 http://www.us-cert.gov/cas/techalerts/TA06-101A.html http://www.vupen.com/english/advisories/2006/1320 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-015 https://exchange.xforce.ibmcloud.com/vulnerabilities/25554 https://oval.cisecurity.org/repository/search/definition/ov •
CVSS: 5.1EPSS: 37%CPEs: 52EXPL: 2CVE-2006-1591
https://notcve.org/view.php?id=CVE-2006-1591
Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file. desbordamiento de búfer basado en memoria dinámica (heap) en Microsoft Windows Help winhlp32.exe permite a los atacantes asistidos por el usuario ejecutar código arbitrario a través de datos de imagen incrustados creados en un archivo .hlp. • http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044748.html http://securityreason.com/securityalert/700 http://www.open-security.org/advisories/15 http://www.securityfocus.com/archive/1/430871/100/0/threaded http://www.securityfocus.com/bid/17325 https://exchange.xforce.ibmcloud.com/vulnerabilities/25573 •