CVE-2006-3444

Microsoft Windows 2000 SP4 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3444. PoCs published by SoBeIt.

AI-analyzed exploit summary This exploit targets CVE-2006-3444, a local privilege escalation vulnerability in Windows via ZwQuerySystemInformation. It leverages shellcode injection and memory manipulation to escalate privileges on Windows 2000 systems.

Description

Unspecified vulnerability in the kernel in Microsoft Windows 2000 SP4, probably a buffer overflow, allows local users to obtain privileges via unspecified vectors involving an "unchecked buffer."

Exploits (1)

exploitdb WORKING POC VERIFIED
by SoBeIt · clocalwindows
https://www.exploit-db.com/exploits/2412

This exploit targets CVE-2006-3444, a local privilege escalation vulnerability in Windows via ZwQuerySystemInformation. It leverages shellcode injection and memory manipulation to escalate privileges on Windows 2000 systems.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Windows 2000 SP4 (and Rollup 1)
No auth needed
Prerequisites: Local access to a vulnerable Windows 2000 system
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1016658
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A673
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/3215
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/21415
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/19388

Scores

EPSS 0.1635
EPSS Percentile 96.6%

Details

Status published
Products (1)
microsoft/windows_2000 (2 CPE variants)
Published Aug 09, 2006
Tracked Since Feb 18, 2026