Unrated severityNVD Advisory· Published May 12, 2006· Updated Jun 16, 2026

CVE-2006-2334

Description

The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent attackers to create files that cannot be accessed through the expected DOS path or prevent access to other similarly named files in the same directory, which prevents those files from being detected or disinfected by certain anti-virus and anti-spyware software.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Microsoft/Windows 20002 versions
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
- (no CPE)range: = SP4
Microsoft/Windows Xp2 versions
cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*
- (no CPE)range: = SP2

Patches

Vulnerability mechanics

References

www.48bits.com/advisories/rtldospath.pdfnvdExploitVendor Advisory
www.securityfocus.com/bid/17934nvdExploit
www.osvdb.org/25761nvd
www.securityfocus.com/archive/1/433583/100/0/threadednvd
exchange.xforce.ibmcloud.com/vulnerabilities/26487nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000