What is CVE-2006-4691?

CVE-2006-4691 is a vulnerability in N/a. Published 2006-11-14.

Is CVE-2006-4691 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2006-4691

Stack-based buffer overflow in the NetpManageIPCConnect function in the Workstation service (wkssvc.dll) in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to execute arbitrary code via NetrJoinDomain2 RPC messages with a lon…

EPSS: 0.889 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

TA06-318A (x_refsource_CERT, third-party-advisory)
oval:org.mitre.oval:def:607 (signature, x_refsource_OVAL, vdb-entry)
20985 (vdb-entry, x_refsource_BID)
win-workstation-service-bo(29948) (vdb-entry, x_refsource_XF)
22883 (x_refsource_SECUNIA, third-party-advisory)
VU#778036 (x_refsource_CERT-VN, third-party-advisory)
1017221 (vdb-entry, x_refsource_SECTRACK)
20061114 EEYE: Workstation Service NetpManageIPCConnect Buffer Overflow (mailing-list, x_refsource_BUGTRAQ)
AD20061114 (third-party-advisory, x_refsource_EEYE)
MS06-070 (x_refsource_MS, vendor-advisory)

Frequently asked questions

What is CVE-2006-4691?: CVE-2006-4691 is a vulnerability in N/a. Published 2006-11-14.
Is CVE-2006-4691 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.