CVE-2006-0005 [Critical] | Memory Corruption in Windows-Nt

CVE-2006-0005 is rated High Exploit Risk (90.6/100): CVSS Critical severity, with high exploitation likelihood (EPSS 75.52%, 99th percentile). 3 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +3.75% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

EDB-ID	Source	Kind	Published	Link
1520	exploit_db	edb	2006-02-22	Exploit-DB ↗
1504	exploit_db	edb	2006-02-17	Exploit-DB ↗
1505	exploit_db	edb	2006-02-17	Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

1520

exploit_db

edb

2006-02-22

Exploit-DB ↗

1504

exploit_db

edb

2006-02-17

Exploit-DB ↗

1505

exploit_db

edb

2006-02-17

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-12-28	71.77%	75.52%	+3.75%
2	2025-12-27	75.52%	71.77%	-3.75%
3	2025-10-28	—	75.52%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-12-28

71.77%

75.52%

+3.75%

2025-12-27

75.52%

71.77%

-3.75%

2025-10-28

—

75.52%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
9.3	2.0	HIGH	`AV:N/AC:M/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:M) Exploitation needs some favorable conditions, but not exceptional ones. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	8.6	10.0	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

9.3

2.0

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:M): Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:C): Complete confidentiality impact.
Integrity impact (I:C): Complete integrity impact.
Availability impact (A:C): Complete availability impact.

8.6

10.0

[email protected]

Affected software / configurations for CVE-2006-0005

Vendor	Product	Version	Raw CPE
microsoft	windows-nt	datacenter_server	cpe:2.3:o:microsoft:windows-nt:datacenter_server:::::::*
microsoft	windows-nt	datacenter_server	cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp1::::::
microsoft	windows-nt	datacenter_server	cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp2::::::
microsoft	windows-nt	datacenter_server	cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp3::::::
microsoft	windows-nt	datacenter_server	cpe:2.3:o:microsoft:windows-nt:datacenter_server:sp4::::::
microsoft	windows-nt	xp	cpe:2.3:o:microsoft:windows-nt:xp:sp2:home:::::*
microsoft	windows-nt	xp_tablet_pc	cpe:2.3:o:microsoft:windows-nt:xp_tablet_pc:::::::*
microsoft	windows-nt	xp_tablet_pc	cpe:2.3:o:microsoft:windows-nt:xp_tablet_pc:sp1::::::
microsoft	windows-nt	xp_tablet_pc	cpe:2.3:o:microsoft:windows-nt:xp_tablet_pc:sp2::::::
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp1:pro:::::
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp2:pro:::::
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp3:pro:::::
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp4::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp4:pro:::::
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000:-:::::::*
microsoft	windows_2000_advanced_server	—	cpe:2.3:o:microsoft:windows_2000_advanced_server::::::::
microsoft	windows_2000_advanced_server	sp1	cpe:2.3:o:microsoft:windows_2000_advanced_server:sp1:::::::*
microsoft	windows_2000_advanced_server	sp2	cpe:2.3:o:microsoft:windows_2000_advanced_server:sp2:::::::*
microsoft	windows_2000_advanced_server	sp3	cpe:2.3:o:microsoft:windows_2000_advanced_server:sp3:::::::*
microsoft	windows_2000_advanced_server	sp4	cpe:2.3:o:microsoft:windows_2000_advanced_server:sp4:::::::*
microsoft	windows_2003_server	datacenter_edition	cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition:::::::*
microsoft	windows_2003_server	datacenter_edition_64-bit	cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit:::::::*
microsoft	windows_2003_server	enterprise_edition	cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition:::::::*
microsoft	windows_2003_server	enterprise_edition_64-bit	cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit:::::::*
microsoft	windows_2003_server	standard	cpe:2.3:o:microsoft:windows_2003_server:standard:::::::*
microsoft	windows_2003_server	standard_64-bit	cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit:::::::*
microsoft	windows_2003_server	web_edition	cpe:2.3:o:microsoft:windows_2003_server:web_edition:::::::*
microsoft	windows_server_2000	none	cpe:2.3:o:microsoft:windows_server_2000:none:::::::*
microsoft	windows_server_2000	sp1	cpe:2.3:o:microsoft:windows_server_2000:sp1:::::::*
microsoft	windows_server_2000	sp2	cpe:2.3:o:microsoft:windows_server_2000:sp2:::::::*
microsoft	windows_server_2000	sp3	cpe:2.3:o:microsoft:windows_server_2000:sp3:::::::*
microsoft	windows_server_2003	datacenter_sp1	cpe:2.3:o:microsoft:windows_server_2003:datacenter_sp1:::::::*
microsoft	windows_server_2003	enterprise_sp1	cpe:2.3:o:microsoft:windows_server_2003:enterprise_sp1:::::::*
microsoft	windows_server_2003	standard_sp1	cpe:2.3:o:microsoft:windows_server_2003:standard_sp1:::::::*
microsoft	windows_server_2003	web_edition_sp1	cpe:2.3:o:microsoft:windows_server_2003:web_edition_sp1:::::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::home:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::media_center:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::pro:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::x64:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:home:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:media_center:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:pro:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:media_center:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:pro:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:-:::::::*

References for CVE-2006-0005

URL	Tags
http://secunia.com/advisories/18852	Vendor Advisory
http://securitytracker.com/id?1015628
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=393
http://www.kb.cert.org/vuls/id/692060	US Government Resource
http://www.securityfocus.com/bid/16644
http://www.us-cert.gov/cas/techalerts/TA06-045A.html	US Government Resource
http://www.vupen.com/english/advisories/2006/0575
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-006
https://exchange.xforce.ibmcloud.com/vulnerabilities/24493
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1559

URL

CVE-2006-0005

Public exploit references (Exploit-DB) for CVE-2006-0005

Exploit prediction scoring system (EPSS) score for CVE-2006-0005

Common vulnerability scoring system (CVSS) metrics for CVE-2006-0005

Weakness enumeration for CVE-2006-0005

Affected software / configurations for CVE-2006-0005

References for CVE-2006-0005