CVE-2006-2379 – Microsoft Windows - TCP/IP Protocol Driver Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-2379
Buffer overflow in the TCP/IP Protocol driver in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via unknown vectors related to IP source routing. • https://www.exploit-db.com/exploits/1967 http://secunia.com/advisories/20639 http://securitytracker.com/id?1016290 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/46702 http://www.kb.cert.org/vuls/id/722753 http://www.osvdb.org/26433 http://www.securityfocus.com/archive/1/438482/100/0/threaded http://www.securityfocus.com/archive/1/438609/100/0/threaded http://www.securityfocus.com/bid/18374 http://www.us-cert.gov/cas/techalerts/TA06-164A.html htt • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2006-2370 – Microsoft RRAS Service - RASMAN Registry Overflow (MS06-025)
https://notcve.org/view.php?id=CVE-2006-2370
Buffer overflow in the Routing and Remote Access service (RRAS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted "RPC related requests," aka the "RRAS Memory Corruption Vulnerability." • https://www.exploit-db.com/exploits/16375 https://www.exploit-db.com/exploits/16364 https://www.exploit-db.com/exploits/1965 https://www.exploit-db.com/exploits/1940 http://secunia.com/advisories/20630 http://securitytracker.com/id?1016285 http://www.kb.cert.org/vuls/id/631516 http://www.osvdb.org/26437 http://www.securityfocus.com/bid/18325 http://www.us-cert.gov/cas/techalerts/TA06-164A.html http://www.vupen.com/english/advisories/2006/2323 https:/ •
CVE-2006-1313
https://notcve.org/view.php?id=CVE-2006-1313
Microsoft JScript 5.1, 5.5, and 5.6 on Windows 2000 SP4, and 5.6 on Windows XP, Server 2003, Windows 98 and Windows Me, will "release objects early" in certain cases, which results in memory corruption and allows remote attackers to execute arbitrary code. • http://secunia.com/advisories/20620 http://securitytracker.com/id?1016283 http://www.kb.cert.org/vuls/id/390044 http://www.osvdb.org/26434 http://www.securityfocus.com/bid/18359 http://www.us-cert.gov/cas/techalerts/TA06-164A.html http://www.vupen.com/english/advisories/2006/2321 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-023 https://exchange.xforce.ibmcloud.com/vulnerabilities/26805 https://oval.cisecurity.org/repository/search/definition/ov •
CVE-2006-1184
https://notcve.org/view.php?id=CVE-2006-1184
Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which causes an out-of-range memory access, aka the MSDTC Denial of Service Vulnerability. NOTE: this is a variant of CVE-2005-2119. • http://secunia.com/advisories/20000 http://securityreason.com/securityalert/864 http://securitytracker.com/id?1016047 http://www.eeye.com/html/research/advisories/AD20060509b.html http://www.osvdb.org/25336 http://www.securityfocus.com/archive/1/433425/100/0/threaded http://www.securityfocus.com/bid/17905 http://www.vupen.com/english/advisories/2006/1742 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-018 https://exchange.xforce.ibmcloud.com/vulnerabilities& •
CVE-2006-0034
https://notcve.org/view.php?id=CVE-2006-0034
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or BuildContext opcode, which triggers a bug in the NdrAllocate function, aka the MSDTC Invalid Memory Access Vulnerability. • http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0238.html http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0269.html http://secunia.com/advisories/20000 http://securityreason.com/securityalert/863 http://securitytracker.com/id?1016047 http://www.eeye.com/html/research/advisories/AD20060509a.html http://www.osvdb.org/25335 http://www.securityfocus.com/archive/1/433430/100/0/threaded http://www.securityfocus.com/archive/1/433677/100/0/threaded http://www.se • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •