CVE-2006-2374

MEDIUM

Microsoft Windows 2000 - Improper Locking

Title source: rule

Description

The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability."

Exploits (2)

exploitdb WORKING POC VERIFIED

by Ruben Santamarta · clocalwindows

https://www.exploit-db.com/exploits/1911

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Ruben Santamarta · cdoswindows

https://www.exploit-db.com/exploits/28001

View Code ZIP pw:eip

References (14)

[Broken Link, Third Party Advisory] http://secunia.com/advisories/20635

[Broken Link, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1016288

[Not Applicable] http://www.idefense.com/intelligence/vulnerabilities/display.php?id=409

[Broken Link] http://www.osvdb.org/26439

[Broken Link, Exploit, Patch, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/18357

[Broken Link, Vendor Advisory] http://www.vupen.com/english/advisories/2006/2327

[Patch, Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-030

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/26830

[Broken Link, Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1827

[Broken Link, Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1841

[Broken Link, Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1850

[Broken Link, Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1979

[Broken Link, Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2030

[Broken Link, Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2060

Scores

CVSS v3 5.5

EPSS 0.0056

EPSS Percentile 68.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-667

Status draft

Affected Products (9)

microsoft/windows_2000

microsoft/windows_2003_server

microsoft/windows_2003_server

microsoft/windows_2003_server

microsoft/windows_2003_server

microsoft/windows_2003_server

microsoft/windows_xp

microsoft/windows_xp

microsoft/windows_xp

Timeline

Published Jun 13, 2006

Tracked Since Feb 18, 2026