CVE-2006-6696

Loading...

General

Score:6.9/10.0
Severity:Medium
Category:Buffer Error
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Medium
Authentication:None

Relative vulnerabilities

CVE-2006-6797, CVE-2007-1209

Published on 22/12/06 - Updated on 03/05/18

Description

Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by calling the MessageBox function with a MB_SERVICE_NOTIFICATION message with crafted data, which sends a HardError message to Client/Server Runtime Server Subsystem (CSRSS) process, which is not properly handled when invoking the UserHardError and GetHardErrorText functions in WINSRV.DLL.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2006-6696
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2007-AVI-168
Renater 2007/VULN194

Exploits

Exploit-DBEDB-2967, EDB-3024
SecurityFocusBID-21688, BID-23324

Relative technologies

VendorProduct
microsoftwindows_2000
microsoftwindows_2003_server
microsoftwindows_vista
microsoftwindows_xp

Share this vulnerability with:

Twitter Facebook LinkedIn Mail