VDB
CVE-2006-2372
CVE-2006-2372
PUBLISHED
CVSS 10 CRITICAL
Buffer overflow in the DHCP Client service for Microsoft Windows 2000 SP4, Windows XP SP1 and SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via a crafted DHCP response.
EPSS 87.32% · 99.5th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
87.32%
99.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows | |
| microsoft | dhcp_client_service | |
| n/a | n/a | * |
Timeline
- Jul 11, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 1016468 vdb
- 20060711 CYBSEC - Security Pre-Advisory: Microsoft Windows DHCP Client Service Remote Buffer Overflow mailing-list
- 21010 third-party-advisory
- 1201 third-party-advisory
- 20060711 CYBSEC - Security Pre-Advisory: Microsoft Windows DHCP Client Service Remote Buffer Overflow mailing-list
- ADV-2006-2754 vdb
- MS06-036 vendor-advisory
- 18923 vdb
- http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_Microsoft_Windows_DHCP_Client_Service_Remote_Buffer_Overflow.pdf url
- oval:org.mitre.oval:def:232 vdb
- 20060829 CYBSEC - Security Advisory: Microsoft Windows DHCP Client Service Remote Buffer Overflow mailing-list
- 2054 exploit
- 27151 vdb
- VU#257164 third-party-advisory
- TA06-192A third-party-advisory
- http://www.microsoft.com/technet/security/Bulletin/MS06-036.mspx advisory
- https://nvd.nist.gov/vuln/detail/CVE-2006-2372 advisory