CVE-2006-2372 Information

Description

Buffer overflow in the DHCP Client service for Microsoft Windows 2000 SP4 Windows XP SP1 and SP2 and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via a crafted DHCP response.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0222.html http://secunia.com/advisories/21010 http://securityreason.com/securityalert/1201 http://securitytracker.com/id?1016468 http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_Microsoft_Windows_DHCP_Client_Service_Remote_Buffer_Overflow.pdf http://www.kb.cert.org/vuls/id/257164 http://www.osvdb.org/27151 http://www.securityfocus.com/archive/1/439675/100/0/threaded http://www.securityfocus.com/archive/1/444631/100/0/threaded http://www.securityfocus.com/bid/18923 http://www.us-cert.gov/cas/techalerts/TA06-192A.html http://www.vupen.com/english/advisories/2006/2754 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-036 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A232 https://www.exploit-db.com/exploits/2054