[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-2373Date: (C)2006-06-13   (M)2023-12-22


The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to execute arbitrary code by calling the MrxSmbCscIoctlOpenForCopyChunk function with the METHOD_NEITHER method flag and an arbitrary address, possibly for kernel memory, aka the "SMB Driver Elevation of Privilege Vulnerability."

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1016288
BID-18356
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=408
SECUNIA-20635
OSVDB-26440
ADV-2006-2327
MS06-030
oval:org.mitre.oval:def:1137
oval:org.mitre.oval:def:1730
oval:org.mitre.oval:def:1792
oval:org.mitre.oval:def:1904
oval:org.mitre.oval:def:1942
oval:org.mitre.oval:def:2007
win-smb-privilege-escalation(26828)

CPE    3
cpe:/o:microsoft:windows_xp:-:sp1
cpe:/o:microsoft:windows_xp:-:sp2
cpe:/o:microsoft:windows_2000:-:sp4
CWE    1
CWE-264
OVAL    6
oval:org.mitre.oval:def:1904
oval:org.mitre.oval:def:1792
oval:org.mitre.oval:def:1730
oval:org.mitre.oval:def:1942
...

© SecPod Technologies