CVE-2006-6296

high

Description

The RpcGetPrinterData function in the Print Spooler (spoolsv.exe) service in Microsoft Windows 2000 SP4 and earlier, and possibly Windows XP SP1 and earlier, allows remote attackers to cause a denial of service (memory consumption) via an RPC request that specifies a large 'offered' value (output buffer size), a variant of CVE-2005-3644.

References

https://www.exploit-db.com/exploits/2879

https://exchange.xforce.ibmcloud.com/vulnerabilities/30717

http://www.vupen.com/english/advisories/2006/4827

http://www.kb.cert.org/vuls/id/914617

http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2005/20051116

http://securitytracker.com/id?1017330

http://secunia.com/advisories/23196

http://research.eeye.com/html/alerts/zeroday/20051116.html

Details

Source: Mitre, NVD

Published: 2006-12-05

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.21198