CVE-2006-4691
Microsoft Windows <XP - Buffer Overflow
Title source: llmDescription
Stack-based buffer overflow in the NetpManageIPCConnect function in the Workstation service (wkssvc.dll) in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to execute arbitrary code via NetrJoinDomain2 RPC messages with a long hostname.
Exploits (5)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16372
exploitdb
WORKING POC
VERIFIED
by Winny Thomas · pythonremotewindows
https://www.exploit-db.com/exploits/2809
exploitdb
WORKING POC
VERIFIED
by S A Stevens · c++remotewindows
https://www.exploit-db.com/exploits/2800
exploitdb
WORKING POC
VERIFIED
by cocoruder · c++remotewindows
https://www.exploit-db.com/exploits/2789
metasploit
WORKING POC
MANUAL
by jduck · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/smb/ms06_070_wkssvc.rb
References (12)
Scores
EPSS
0.8886
EPSS Percentile
99.5%
Details
Status
published
Products (2)
microsoft/windows_2000
microsoft/windows_xp
Published
Nov 14, 2006
Tracked Since
Feb 18, 2026