What is the severity of CVE-2006-2376?

CVE-2006-2376 has been classified as critical due to its potential to allow remote code execution.

How do I fix CVE-2006-2376?

Fixing CVE-2006-2376 involves patching affected systems, but due to the age of Windows 98 and Me, upgrades to newer operating systems are recommended.

What systems are affected by CVE-2006-2376?

CVE-2006-2376 specifically affects Microsoft Windows 98 and Windows Me.

What types of attacks can CVE-2006-2376 facilitate?

CVE-2006-2376 can facilitate remote code execution attacks via malicious Windows Metafile or EMF images.

Is CVE-2006-2376 still a concern today?

While CVE-2006-2376 primarily affects outdated systems, it remains a concern for legacy systems still in use.

Vulnerability/
CVE-2006-2376

high

7.5

CWE

189 119 190

13/6/2006

7/8/2024

CVE-2006-2376: Buffer Overflow

First published: Tue Jun 13 2006(Updated: )

Integer overflow in the PolyPolygon function in Graphics Rendering Engine on Microsoft Windows 98 and Me allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) or EMF image with a sum of entries in the vertext counts array and number of polygons that triggers a heap-based buffer overflow.

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows 98SE
Microsoft Windows Me
Microsoft Windows 98	=gold

Remedy

http://secunia.com/advisories/20631

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-2376?
CVE-2006-2376 has been classified as critical due to its potential to allow remote code execution.
How do I fix CVE-2006-2376?
Fixing CVE-2006-2376 involves patching affected systems, but due to the age of Windows 98 and Me, upgrades to newer operating systems are recommended.
What systems are affected by CVE-2006-2376?
CVE-2006-2376 specifically affects Microsoft Windows 98 and Windows Me.
What types of attacks can CVE-2006-2376 facilitate?
CVE-2006-2376 can facilitate remote code execution attacks via malicious Windows Metafile or EMF images.
Is CVE-2006-2376 still a concern today?
While CVE-2006-2376 primarily affects outdated systems, it remains a concern for legacy systems still in use.

collector/nvd-historical
collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/weakness
agent/last-modified-date
agent/description
agent/first-publish-date
agent/tags
agent/remedy
agent/author
agent/event
agent/source
vendor/microsoft
canonical/microsoft windows 98se
canonical/microsoft windows me
canonical/microsoft windows 98
version/microsoft windows 98/gold

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.