Published: 05/12/2006 Updated: 30/04/2019

CVSS v2 Base Score: 6.1 | Impact Score: 6.9 | Exploitability Score: 6.5

VMScore: 615

Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C

The RpcGetPrinterData function in the Print Spooler (spoolsv.exe) service in Microsoft Windows 2000 SP4 and previous versions, and possibly Windows XP SP1 and previous versions, allows remote malicious users to cause a denial of service (memory consumption) via an RPC request that specifies a large 'offered' value (output buffer size), a variant of CVE-2005-3644.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows xp
microsoft windows 2000

#!/usr/bin/python # MS Windows spoolss GetPrinterData() 0day Memory Allocation Remote DoS Exploit # Bug discovered by h07 <h07@interiapl> # Tested on Windows 2000 SP4 Polish + All Microsoft Security Bulletins # Example: # # C:\>python spoolss_dospy 19216802 512 # # [*] MS Windows GetPrinterData() 0day Memory Allocation Remote DoS Expl ...

CWE-399 http://www.securityfocus.com/bid/21401 http://secunia.com/advisories/23196 http://research.eeye.com/html/alerts/zeroday/20051116.html http://www.kb.cert.org/vuls/id/914617 http://securitytracker.com/id?1017330 http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2005/20051116 http://www.vupen.com/english/advisories/2006/4827 https://exchange.xforce.ibmcloud.com/vulnerabilities/30717 https://www.exploit-db.com/exploits/2879 https://nvd.nist.gov https://www.exploit-db.com/exploits/2879/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-6296

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect