CVE-2006-2372

CVE Database · CVE-2006-2372

CVE-2006-2372

· N/AModified

CVSS v3.1

N/A

EPSS

90.23%

Published

Jul 11, 2006

Modified

Apr 15, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Windows - DHCP Client Broadcast (MS06-036)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the DHCP Client service for Microsoft Windows 2000 SP4, Windows XP SP1 and SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via a crafted DHCP response.

Weaknesses (CWE)

CWE-119

Affected Products (1)

microsoft · dhcp_client_servicevulnerable

References (20)

http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0222.html

http://secunia.com/advisories/21010

PatchVendor Advisory

http://securityreason.com/securityalert/1201

http://securitytracker.com/id?1016468

http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_Microsoft_Windows_DHCP_Client_Service_Remote_Buffer_Overflow.pdf

Patch

http://www.kb.cert.org/vuls/id/257164

US Government Resource

http://www.osvdb.org/27151

http://www.securityfocus.com/archive/1/439675/100/0/threaded

http://www.securityfocus.com/archive/1/444631/100/0/threaded

KEV Catalog EPSS Scores Vendors All CVEs