Executive Summary
Informations | |||
---|---|---|---|
Name | MS06-072 | First vendor Publication | 2006-12-12 |
Vendor | Microsoft | Last vendor Modification | 2006-12-12 |
Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
This update resolves several newly discovered vulnerabilities. Each vulnerability is documented in its own subsection in the Vulnerability Details section of this bulletin. If a user is logged on with administrative user rights, an attacker who successfully exploited the most severe of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/ms06-072.mspx?pubDate=2 (...) |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:116 | |||
Oval ID: | oval:org.mitre.oval:def:116 | ||
Title: | DHTML Script Function Memory Corruption Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code via certain DHTML script functions, such as normalize, and "incorrectly created elements" that trigger memory corruption, aka "DHTML Script Function Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-5581 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:313 | |||
Oval ID: | oval:org.mitre.oval:def:313 | ||
Title: | TIF Folder Information Disclosure Vulnerability | ||
Description: | Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information via unspecified uses of the OBJECT HTML tag, which discloses the absolute path of the corresponding TIF folder, aka "TIF Folder Information Disclosure Vulnerability," and a different issue than CVE-2006-5578. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-5577 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:337 | |||
Oval ID: | oval:org.mitre.oval:def:337 | ||
Title: | TIF Folder Information Disclosure Vulnerability | ||
Description: | Microsoft Internet Explorer 6 and earlier allows remote attackers to read Temporary Internet Files (TIF) and obtain sensitive information via unspecified vectors involving certain drag and drop operations, aka "TIF Folder Information Disclosure Vulnerability," and a different issue than CVE-2006-5577. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-5578 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:761 | |||
Oval ID: | oval:org.mitre.oval:def:761 | ||
Title: | Script Error Handling Memory Corruption Vulnerability | ||
Description: | Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using JavaScript to cause certain errors simultaneously, which results in the access of previously freed memory, aka "Script Error Handling Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2006-5579 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
30816 | Microsoft IE TIF Folder Cached Content Information Disclosure Microsoft Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. Â The issue is triggered when user accesses a malicious web page that contains a specially crafted object HTML tag, which will disclose the path and content to the cached content located in the user's temporary internet folder resulting in a loss of confidentiality. |
30815 | Microsoft IE TIF Folder Drag and Drop Operation Information Disclosure Microsoft Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. Â The issue is triggered when user accesses a malicious web page and performs unspecified drag and drop operations, which will disclose the path and content to the cached content located in the user's temporary internet folder information resulting in a loss of confidentiality. |
30814 | Microsoft IE DHTML Script Function Memory Corruption Microsoft Internet Explorer contains a flaw related to the DHTML script functions that is triggered when a user visits a malicious web page that contains certain DHTML script functions, such as normalize, which can corrupt memory and allow the attacker to execute arbitrary code. |
30813 | Microsoft IE Script Error Handling Memory Corruption Microsoft Internet Explorer contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when a user retrieves a malicious web page that contains specially crafted JavaScript that triggers certain errors simultaneously, which leads to memory corruption due to an error within the exception handling of script errors. It is possible that the flaw may allow an attacker to execute arbitrary code resulting in a loss of integrity. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-12-12 | Name : Arbitrary code can be executed on the remote host through the web client. File : smb_nt_ms06-072.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:45:33 |
|
2013-05-11 12:21:57 |
|