CVE-2006-2371

N/A Unknown

Published: June 13, 2006 Modified: April 16, 2026

Description

Buffer overflow in the Remote Access Connection Manager service (RASMAN) service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote unauthenticated or authenticated attackers to execute arbitrary code via certain crafted "RPC related requests," that lead to registry corruption and stack corruption, aka the "RASMAN Registry Corruption Vulnerability."

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/20630

Source: secure@microsoft.com

Patch Vendor Advisory

http://securityreason.com/securityalert/1096

Source: secure@microsoft.com

http://securitytracker.com/id?1016285

Source: secure@microsoft.com

http://www.kb.cert.org/vuls/id/814644

Source: secure@microsoft.com

US Government Resource

http://www.osvdb.org/26436

Source: secure@microsoft.com

http://www.securityfocus.com/archive/1/436977/100/0/threaded

Source: secure@microsoft.com

http://www.securityfocus.com/bid/18358

Source: secure@microsoft.com

Patch

http://www.us-cert.gov/cas/techalerts/TA06-164A.html

Source: secure@microsoft.com

US Government Resource

http://www.vupen.com/english/advisories/2006/2323

Source: secure@microsoft.com

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-025

Source: secure@microsoft.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/26814

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1674

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1846

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1851

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1857

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1907

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1983

Source: secure@microsoft.com

http://secunia.com/advisories/20630

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://securityreason.com/securityalert/1096

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1016285

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/814644

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.osvdb.org/26436

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/436977/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/18358

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.us-cert.gov/cas/techalerts/TA06-164A.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.vupen.com/english/advisories/2006/2323

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-025

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/26814

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1674

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1846

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1851

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1857

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1907

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1983

Source: af854a3a-2127-422b-91ae-364da2661108

34 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

38.6%

97th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

microsoft