CVE-2006-1314

Microsoft Windows - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1314.

AI-analyzed exploit summary This exploit targets CVE-2006-1314, a memory corruption vulnerability in Microsoft SRV.SYS via malformed SMB requests. It sends crafted SMB packets to trigger the vulnerability, potentially leading to remote code execution.

Description

Heap-based buffer overflow in the Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote attackers to execute arbitrary code via crafted first-class Mailslot messages that triggers memory corruption and bypasses size restrictions on second-class Mailslot messages.

Exploits (1)

exploitdb WORKING POC

cdoswindows

https://www.exploit-db.com/exploits/2057

View Code ZIP pw:eip

This exploit targets CVE-2006-1314, a memory corruption vulnerability in Microsoft SRV.SYS via malformed SMB requests. It sends crafted SMB packets to trigger the vulnerability, potentially leading to remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows (SRV.SYS)

No auth needed

Prerequisites: Network access to target · SMB port (445) open

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (12)

Core 12

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/26818

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/189140

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/2753

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/27154

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21007

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/1212

Patch, Vendor Advisory x_refsource_misc

http://www.tippingpoint.com/security/advisories/TSRT-06-02.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A600

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18863

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/439773/100/0/threaded

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-035

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA06-192A.html

Scores

EPSS 0.7584

EPSS Percentile 98.9%

Details

Status published

Products (6)

microsoft/windows_2000

microsoft/windows_2003_server 64-bit

microsoft/windows_2003_server itanium

microsoft/windows_2003_server r2

microsoft/windows_2003_server sp1 (2 CPE variants)

microsoft/windows_xp (3 CPE variants)

Published Jul 11, 2006

Tracked Since Feb 18, 2026