CVE-2006-0012

Опубликовано: 12 апр. 2006

Источник: nvd

CVSS2: 5.1

EPSS Средний

Описание

Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "Windows Shell Vulnerability."

Ссылки

http://secunia.com/advisories/19606
Patch
Vendor Advisory
http://securitytracker.com/id?1015897
http://www.kb.cert.org/vuls/id/641460
Third Party Advisory
US Government Resource
http://www.osvdb.org/24516
http://www.securityfocus.com/bid/17464
http://www.us-cert.gov/cas/techalerts/TA06-101A.html
US Government Resource
http://www.vupen.com/english/advisories/2006/1320
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-015
https://exchange.xforce.ibmcloud.com/vulnerabilities/25554
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1191
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1448
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1679
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1743
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1764
http://secunia.com/advisories/19606
Patch
Vendor Advisory
http://securitytracker.com/id?1015897
http://www.kb.cert.org/vuls/id/641460
Third Party Advisory
US Government Resource
http://www.osvdb.org/24516
http://www.securityfocus.com/bid/17464
http://www.us-cert.gov/cas/techalerts/TA06-101A.html
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:datacenter_64-bit:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:enterprise:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:r2:*:datacenter_64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:r2:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:standard:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:standard:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:web:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:home:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

EPSS

Процентиль: 98%

0.49984

Средний

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-2qjq-px2f-x2q2

github

почти 4 года назад