← Back

CVE-2006-2373

nvd nist
Published: Jun 13, 2006Modified: Apr 16, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to execute arbitrary code by calling the MrxSmbCscIoctlOpenForCopyChunk function with the METHOD_NEITHER method flag and an arbitrary address, possibly for kernel memory, aka the "SMB Driver Elevation of Privilege Vulnerability."

Affected (7)

Microsoft
3 products
Windows 2000
Windows Server 2003
Windows Xp
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Windows 2000
All versions
Microsoft
Windows Server 2003
All versions
Windows Server 2003
All versions
Windows Server 2003
All versions
Microsoft
Windows Xp
All versions
Windows Xp
All versions
Windows Xp
All versions

Related CWEs

CWE-264
CWE-264

References (28)

Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Broken Link
Source: secure@microsoft.com
PatchThird Party AdvisoryVDB Entry
Source: secure@microsoft.com
Vendor Advisory
Source: secure@microsoft.com
PatchVendor Advisory
Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Third Party Advisory
Source: secure@microsoft.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.