CVE-2006-2334

Microsoft Windows 2000 and XP - File Access Restriction via RtlDosPathNameToNtPathName_U Path Handling

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2334. PoCs published by Mario Ballano Bárcena.

AI-analyzed exploit summary This exploit leverages a path-conversion weakness in Microsoft Windows to bypass security applications by using the \\?\ prefix to create a file with an EICAR test string, demonstrating the vulnerability.

Description

The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent attackers to create files that cannot be accessed through the expected DOS path or prevent access to other similarly named files in the same directory, which prevents those files from being detected or disinfected by certain anti-virus and anti-spyware software.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Mario Ballano Bárcena · remotewindows
https://www.exploit-db.com/exploits/27851

This exploit leverages a path-conversion weakness in Microsoft Windows to bypass security applications by using the \\?\ prefix to create a file with an EICAR test string, demonstrating the vulnerability.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Windows (multiple versions)
No auth needed
Prerequisites: Access to a Windows system with affected path-resolution behavior
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17934
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/26487
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/433583/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/25761
Exploit, Vendor Advisory x_refsource_misc
http://www.48bits.com/advisories/rtldospath.pdf

Scores

EPSS 0.0436
EPSS Percentile 90.0%

Details

Status published
Products (2)
microsoft/windows_2000
microsoft/windows_xp
Published May 12, 2006
Tracked Since Feb 18, 2026