cvelistv5 - cve-2006-6797

CVE-2006-6797 (GCVE-0-2006-6797)

Vulnerability from cvelistv5 – Published: 2006-12-28 15:00 – Updated: 2024-08-07 20:42

Summary

The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.securityfocus.com/archive/1/466331/100…	vendor-advisoryx_refsource_HP
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://www.reversemode.com/index.php?option=com_r…	x_refsource_MISC
	http://securitytracker.com/id?1017454	vdb-entryx_refsource_SECTRACK
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/23491	third-party-advisoryx_refsource_SECUNIA
	http://www.kb.cert.org/vuls/id/740636	third-party-advisoryx_refsource_CERT-VN
	https://docs.microsoft.com/en-us/security-updates…	vendor-advisoryx_refsource_MS
	http://www.vupen.com/english/advisories/2007/1325	vdb-entryx_refsource_VUPEN
	http://www.vupen.com/english/advisories/2006/5197	vdb-entryx_refsource_VUPEN
	http://www.securityfocus.com/archive/1/455365/100…	mailing-listx_refsource_BUGTRAQ
	http://www.reversemode.com/index.php?option=com_c…	x_refsource_MISC
	http://www.us-cert.gov/cas/techalerts/TA07-100A.html	third-party-advisoryx_refsource_CERT
	http://www.securityfocus.com/archive/1/466331/100…	vendor-advisoryx_refsource_HP
	http://securityreason.com/securityalert/2086	third-party-advisoryx_refsource_SREASON

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T20:42:06.964Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "HPSBST02208",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
          },
          {
            "name": "oval:org.mitre.oval:def:2013",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
          },
          {
            "name": "1017454",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1017454"
          },
          {
            "name": "win-ntraiseharderror-information-disclosure(31176)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
          },
          {
            "name": "23491",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23491"
          },
          {
            "name": "VU#740636",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/740636"
          },
          {
            "name": "MS07-021",
            "tags": [
              "vendor-advisory",
              "x_refsource_MS",
              "x_transferred"
            ],
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
          },
          {
            "name": "ADV-2007-1325",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/1325"
          },
          {
            "name": "ADV-2006-5197",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/5197"
          },
          {
            "name": "20061227 NtRaiseHardError Csrss.exe memory Disclosure exploit",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
          },
          {
            "name": "TA07-100A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
          },
          {
            "name": "SSRT071365",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
          },
          {
            "name": "2086",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/2086"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-12-28T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "HPSBST02208",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
        },
        {
          "name": "oval:org.mitre.oval:def:2013",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
        },
        {
          "name": "1017454",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1017454"
        },
        {
          "name": "win-ntraiseharderror-information-disclosure(31176)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
        },
        {
          "name": "23491",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23491"
        },
        {
          "name": "VU#740636",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/740636"
        },
        {
          "name": "MS07-021",
          "tags": [
            "vendor-advisory",
            "x_refsource_MS"
          ],
          "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
        },
        {
          "name": "ADV-2007-1325",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/1325"
        },
        {
          "name": "ADV-2006-5197",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/5197"
        },
        {
          "name": "20061227 NtRaiseHardError Csrss.exe memory Disclosure exploit",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
        },
        {
          "name": "TA07-100A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
        },
        {
          "name": "SSRT071365",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
        },
        {
          "name": "2086",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/2086"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-6797",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "HPSBST02208",
              "refsource": "HP",
              "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
            },
            {
              "name": "oval:org.mitre.oval:def:2013",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
            },
            {
              "name": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43",
              "refsource": "MISC",
              "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
            },
            {
              "name": "1017454",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1017454"
            },
            {
              "name": "win-ntraiseharderror-information-disclosure(31176)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
            },
            {
              "name": "23491",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23491"
            },
            {
              "name": "VU#740636",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/740636"
            },
            {
              "name": "MS07-021",
              "refsource": "MS",
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
            },
            {
              "name": "ADV-2007-1325",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/1325"
            },
            {
              "name": "ADV-2006-5197",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/5197"
            },
            {
              "name": "20061227 NtRaiseHardError Csrss.exe memory Disclosure exploit",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
            },
            {
              "name": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2",
              "refsource": "MISC",
              "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
            },
            {
              "name": "TA07-100A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
            },
            {
              "name": "SSRT071365",
              "refsource": "HP",
              "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
            },
            {
              "name": "2086",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/2086"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-6797",
    "datePublished": "2006-12-28T15:00:00",
    "dateReserved": "2006-12-28T00:00:00",
    "dateUpdated": "2024-08-07T20:42:06.964Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*\", \"matchCriteriaId\": \"580B0C9B-DD85-40FA-9D37-BAC0C96D57FC\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.\"}, {\"lang\": \"es\", \"value\": \"El Subsistema de Cliente - Servidor en Tiempo de Ejecuci\\u00f3n (Client Server Run-Time Subsystem o CSRSS) de Microsoft Windows permite a usuarios locales provocar una denegaci\\u00f3n de servicio (ca\\u00edda) o leer memoria de su elecci\\u00f3n de csrss.exe mediante argumentos manipulados para la funci\\u00f3n NtRaiseHardError con estatus 0x50000018, una vulnerabilidad distinta de CVE-2006-6696.\"}]",
      "id": "CVE-2006-6797",
      "lastModified": "2024-11-21T00:23:40.583",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:N/A:C\", \"baseScore\": 6.6, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.9, \"impactScore\": 9.2, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2006-12-28T15:28:00.000",
      "references": "[{\"url\": \"http://secunia.com/advisories/23491\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securityreason.com/securityalert/2086\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1017454\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/740636\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/455365/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/466331/100/200/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/466331/100/200/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-100A.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2006/5197\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/1325\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/31176\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/23491\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securityreason.com/securityalert/2086\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1017454\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/740636\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/455365/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/466331/100/200/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/466331/100/200/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-100A.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2006/5197\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/1325\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/31176\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-6797\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-12-28T15:28:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.\"},{\"lang\":\"es\",\"value\":\"El Subsistema de Cliente - Servidor en Tiempo de Ejecuci\u00f3n (Client Server Run-Time Subsystem o CSRSS) de Microsoft Windows permite a usuarios locales provocar una denegaci\u00f3n de servicio (ca\u00edda) o leer memoria de su elecci\u00f3n de csrss.exe mediante argumentos manipulados para la funci\u00f3n NtRaiseHardError con estatus 0x50000018, una vulnerabilidad distinta de CVE-2006-6696.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:N/A:C\",\"baseScore\":6.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":9.2,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*\",\"matchCriteriaId\":\"580B0C9B-DD85-40FA-9D37-BAC0C96D57FC\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/23491\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securityreason.com/securityalert/2086\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1017454\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/740636\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/455365/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/466331/100/200/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/466331/100/200/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-100A.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/5197\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/1325\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/31176\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23491\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securityreason.com/securityalert/2086\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1017454\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/740636\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/455365/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/466331/100/200/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/466331/100/200/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-100A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/5197\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/1325\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/31176\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

CERTA-2007-AVI-168

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été identifiées dans le processus Client/Server Runtime Subsystem ou CSRSS de Microsoft Windows. L'exploitation de celles-ci permettraient à une personne malveillante de perturber ou prendre le contrôle complet du système vulnérable.

Description

De multiples vulnérabilités ont été identifiées dans le processus Client/Server Runtime Subsystem ou CSRSS de Microsoft Windows. Ce dernier est un élément essentiel du système d'exploitation, qui permet entre autres de gérer les fenêtres et des éléments graphiques de Windows.

csrss.exe ne manipulerait pas correctement certains messages d'erreurs via ses fenêtres MsgBox. Une personne malveillante pourrait donc forcer l'affichage de tels messages particuliers (visite d'une page Web, ou lancement d'une application) afin de prendre le contrôle du système vulnérable ;
csrss.exe ne convertirait pas correctement certaines ressources système, ce qui pourrait également être exploité pour prendre le contrôle d'un système ;

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	Windows	Microsoft Windows XP Professional x64 Edition (Service Pack 2 compris).
Microsoft	Windows	Microsoft Windows Server 2003 x64 Edition (Service Pack 2 inclus) ;
Microsoft	Windows	Microsoft Windows XP Service Pack 2 ;
Microsoft	Windows	Microsoft Windows Server 2003 pour les systèmes Itanium (Service Pack 1 et Service Pack 2 inclus) ;
Microsoft	Windows	Windows Vista x64 Edition.
Microsoft	Windows	Microsoft Windows Server 2003 (Service Pack 1 et Service Pack 2 inclus) ;
Microsoft	Windows	Windows Vista ;
Microsoft	Windows	Microsoft Windows 2000 Service Pack 4 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft MS07-021 du 10 avril 2007	None	vendor-advisory
Bulletin de sécurité eEye AD20070410b du 10 avril 2007 :	-	other
Bulletin de sécurité Microsoft MS07-021 du 11 avril 2007 :	-	other
Bulletin de sécurité Microsoft MS07-021 du 11 avril 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Windows XP Professional x64 Edition (Service Pack 2 compris).",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 x64 Edition (Service Pack 2 inclus) ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 pour les syst\u00e8mes Itanium (Service Pack 1 et Service Pack 2 inclus) ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Vista x64 Edition.",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 (Service Pack 1 et Service Pack 2 inclus) ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Vista ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows 2000 Service Pack 4 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans le processus\nClient/Server Runtime Subsystem ou CSRSS de Microsoft Windows. Ce\ndernier est un \u00e9l\u00e9ment essentiel du syst\u00e8me d\u0027exploitation, qui permet\nentre autres de g\u00e9rer les fen\u00eatres et des \u00e9l\u00e9ments graphiques de\nWindows.\n\n-   csrss.exe ne manipulerait pas correctement certains messages\n    d\u0027erreurs via ses fen\u00eatres MsgBox. Une personne malveillante\n    pourrait donc forcer l\u0027affichage de tels messages particuliers\n    (visite d\u0027une page Web, ou lancement d\u0027une application) afin de\n    prendre le contr\u00f4le du syst\u00e8me vuln\u00e9rable ;\n-   csrss.exe ne convertirait pas correctement certaines ressources\n    syst\u00e8me, ce qui pourrait \u00e9galement \u00eatre exploit\u00e9 pour prendre le\n    contr\u00f4le d\u0027un syst\u00e8me ;\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-1209",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1209"
    },
    {
      "name": "CVE-2006-6696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6696"
    },
    {
      "name": "CVE-2006-6797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6797"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 eEye AD20070410b du 10 avril 2007 :",
      "url": "http://www.eeye.com/html/research/advisories/published/AD20070410b.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS07-021 du 11 avril 2007 :",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS07-021 du 11 avril 2007 :",
      "url": "http://www.microsoft.com/france/technet/security/bulletin/MS07-021.mspx"
    }
  ],
  "reference": "CERTA-2007-AVI-168",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-04-11T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans le processus \u003cspan\nclass=\"textit\"\u003eClient/Server Runtime Subsystem\u003c/span\u003e ou CSRSS de\nMicrosoft Windows. L\u0027exploitation de celles-ci permettraient \u00e0 une\npersonne malveillante de perturber ou prendre le contr\u00f4le complet du\nsyst\u00e8me vuln\u00e9rable.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s de CSRSS dans Microsoft Windows",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS07-021 du 10 avril 2007",
      "url": null
    }
  ]
}

CERTA-2007-AVI-168

Vulnerability from certfr_avis - Published: - Updated:

Description

csrss.exe ne manipulerait pas correctement certains messages d'erreurs via ses fenêtres MsgBox. Une personne malveillante pourrait donc forcer l'affichage de tels messages particuliers (visite d'une page Web, ou lancement d'une application) afin de prendre le contrôle du système vulnérable ;
csrss.exe ne convertirait pas correctement certaines ressources système, ce qui pourrait également être exploité pour prendre le contrôle d'un système ;

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	Windows	Microsoft Windows XP Professional x64 Edition (Service Pack 2 compris).
Microsoft	Windows	Microsoft Windows Server 2003 x64 Edition (Service Pack 2 inclus) ;
Microsoft	Windows	Microsoft Windows XP Service Pack 2 ;
Microsoft	Windows	Microsoft Windows Server 2003 pour les systèmes Itanium (Service Pack 1 et Service Pack 2 inclus) ;
Microsoft	Windows	Windows Vista x64 Edition.
Microsoft	Windows	Microsoft Windows Server 2003 (Service Pack 1 et Service Pack 2 inclus) ;
Microsoft	Windows	Windows Vista ;
Microsoft	Windows	Microsoft Windows 2000 Service Pack 4 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft MS07-021 du 10 avril 2007	None	vendor-advisory
Bulletin de sécurité eEye AD20070410b du 10 avril 2007 :	-	other
Bulletin de sécurité Microsoft MS07-021 du 11 avril 2007 :	-	other
Bulletin de sécurité Microsoft MS07-021 du 11 avril 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Windows XP Professional x64 Edition (Service Pack 2 compris).",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 x64 Edition (Service Pack 2 inclus) ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows XP Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 pour les syst\u00e8mes Itanium (Service Pack 1 et Service Pack 2 inclus) ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Vista x64 Edition.",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows Server 2003 (Service Pack 1 et Service Pack 2 inclus) ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Vista ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Windows 2000 Service Pack 4 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans le processus\nClient/Server Runtime Subsystem ou CSRSS de Microsoft Windows. Ce\ndernier est un \u00e9l\u00e9ment essentiel du syst\u00e8me d\u0027exploitation, qui permet\nentre autres de g\u00e9rer les fen\u00eatres et des \u00e9l\u00e9ments graphiques de\nWindows.\n\n-   csrss.exe ne manipulerait pas correctement certains messages\n    d\u0027erreurs via ses fen\u00eatres MsgBox. Une personne malveillante\n    pourrait donc forcer l\u0027affichage de tels messages particuliers\n    (visite d\u0027une page Web, ou lancement d\u0027une application) afin de\n    prendre le contr\u00f4le du syst\u00e8me vuln\u00e9rable ;\n-   csrss.exe ne convertirait pas correctement certaines ressources\n    syst\u00e8me, ce qui pourrait \u00e9galement \u00eatre exploit\u00e9 pour prendre le\n    contr\u00f4le d\u0027un syst\u00e8me ;\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-1209",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1209"
    },
    {
      "name": "CVE-2006-6696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6696"
    },
    {
      "name": "CVE-2006-6797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6797"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 eEye AD20070410b du 10 avril 2007 :",
      "url": "http://www.eeye.com/html/research/advisories/published/AD20070410b.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS07-021 du 11 avril 2007 :",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS07-021 du 11 avril 2007 :",
      "url": "http://www.microsoft.com/france/technet/security/bulletin/MS07-021.mspx"
    }
  ],
  "reference": "CERTA-2007-AVI-168",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-04-11T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans le processus \u003cspan\nclass=\"textit\"\u003eClient/Server Runtime Subsystem\u003c/span\u003e ou CSRSS de\nMicrosoft Windows. L\u0027exploitation de celles-ci permettraient \u00e0 une\npersonne malveillante de perturber ou prendre le contr\u00f4le complet du\nsyst\u00e8me vuln\u00e9rable.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s de CSRSS dans Microsoft Windows",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS07-021 du 10 avril 2007",
      "url": null
    }
  ]
}

FKIE_CVE-2006-6797

Vulnerability from fkie_nvd - Published: 2006-12-28 15:28 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/23491
cve@mitre.org	http://securityreason.com/securityalert/2086
cve@mitre.org	http://securitytracker.com/id?1017454
cve@mitre.org	http://www.kb.cert.org/vuls/id/740636	US Government Resource
cve@mitre.org	http://www.reversemode.com/index.php?option=com_content&task=view&id=29&Itemid=2
cve@mitre.org	http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=43
cve@mitre.org	http://www.securityfocus.com/archive/1/455365/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/466331/100/200/threaded
cve@mitre.org	http://www.us-cert.gov/cas/techalerts/TA07-100A.html	US Government Resource
cve@mitre.org	http://www.vupen.com/english/advisories/2006/5197
cve@mitre.org	http://www.vupen.com/english/advisories/2007/1325
cve@mitre.org	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/31176
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23491
af854a3a-2127-422b-91ae-364da2661108	http://securityreason.com/securityalert/2086
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1017454
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/740636	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.reversemode.com/index.php?option=com_content&task=view&id=29&Itemid=2
af854a3a-2127-422b-91ae-364da2661108	http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=43
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/455365/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/466331/100/200/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA07-100A.html	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/5197
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/1325
af854a3a-2127-422b-91ae-364da2661108	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/31176
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013

Impacted products

	Vendor	Product	Version
	microsoft	windows_xp	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*",
              "matchCriteriaId": "580B0C9B-DD85-40FA-9D37-BAC0C96D57FC",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696."
    },
    {
      "lang": "es",
      "value": "El Subsistema de Cliente - Servidor en Tiempo de Ejecuci\u00f3n (Client Server Run-Time Subsystem o CSRSS) de Microsoft Windows permite a usuarios locales provocar una denegaci\u00f3n de servicio (ca\u00edda) o leer memoria de su elecci\u00f3n de csrss.exe mediante argumentos manipulados para la funci\u00f3n NtRaiseHardError con estatus 0x50000018, una vulnerabilidad distinta de CVE-2006-6696."
    }
  ],
  "id": "CVE-2006-6797",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.6,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 9.2,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-12-28T15:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23491"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/2086"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1017454"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/740636"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/5197"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/1325"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23491"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/2086"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1017454"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/740636"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/5197"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/1325"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-JGQ8-8Q6H-FQGV

Vulnerability from github – Published: 2022-05-01 07:41 – Updated: 2022-05-01 07:41

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-6797"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-12-28T15:28:00Z",
    "severity": "MODERATE"
  },
  "details": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.",
  "id": "GHSA-jgq8-8q6h-fqgv",
  "modified": "2022-05-01T07:41:35Z",
  "published": "2022-05-01T07:41:35Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-6797"
    },
    {
      "type": "WEB",
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23491"
    },
    {
      "type": "WEB",
      "url": "http://securityreason.com/securityalert/2086"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1017454"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/740636"
    },
    {
      "type": "WEB",
      "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
    },
    {
      "type": "WEB",
      "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/5197"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/1325"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2006-6797

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-6797

Aliases

CVE-2006-6797

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-6797",
    "description": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.",
    "id": "GSD-2006-6797"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-6797"
      ],
      "details": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.",
      "id": "GSD-2006-6797",
      "modified": "2023-12-13T01:19:54.017911Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-6797",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "HPSBST02208",
            "refsource": "HP",
            "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
          },
          {
            "name": "oval:org.mitre.oval:def:2013",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
          },
          {
            "name": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43",
            "refsource": "MISC",
            "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
          },
          {
            "name": "1017454",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1017454"
          },
          {
            "name": "win-ntraiseharderror-information-disclosure(31176)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
          },
          {
            "name": "23491",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23491"
          },
          {
            "name": "VU#740636",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/740636"
          },
          {
            "name": "MS07-021",
            "refsource": "MS",
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
          },
          {
            "name": "ADV-2007-1325",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/1325"
          },
          {
            "name": "ADV-2006-5197",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/5197"
          },
          {
            "name": "20061227 NtRaiseHardError Csrss.exe memory Disclosure exploit",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
          },
          {
            "name": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2",
            "refsource": "MISC",
            "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
          },
          {
            "name": "TA07-100A",
            "refsource": "CERT",
            "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
          },
          {
            "name": "SSRT071365",
            "refsource": "HP",
            "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
          },
          {
            "name": "2086",
            "refsource": "SREASON",
            "url": "http://securityreason.com/securityalert/2086"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-6797"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.reversemode.com/index.php?option=com_content\u0026task=view\u0026id=29\u0026Itemid=2"
            },
            {
              "name": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.reversemode.com/index.php?option=com_remository\u0026Itemid=2\u0026func=fileinfo\u0026id=43"
            },
            {
              "name": "1017454",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1017454"
            },
            {
              "name": "23491",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23491"
            },
            {
              "name": "TA07-100A",
              "refsource": "CERT",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA07-100A.html"
            },
            {
              "name": "VU#740636",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/740636"
            },
            {
              "name": "2086",
              "refsource": "SREASON",
              "tags": [],
              "url": "http://securityreason.com/securityalert/2086"
            },
            {
              "name": "ADV-2007-1325",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/1325"
            },
            {
              "name": "ADV-2006-5197",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/5197"
            },
            {
              "name": "win-ntraiseharderror-information-disclosure(31176)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31176"
            },
            {
              "name": "oval:org.mitre.oval:def:2013",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2013"
            },
            {
              "name": "MS07-021",
              "refsource": "MS",
              "tags": [],
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-021"
            },
            {
              "name": "HPSBST02208",
              "refsource": "HP",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/466331/100/200/threaded"
            },
            {
              "name": "20061227 NtRaiseHardError Csrss.exe memory Disclosure exploit",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/455365/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.6,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 9.2,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-17T21:49Z",
      "publishedDate": "2006-12-28T15:28Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-6797 (GCVE-0-2006-6797)

CERTA-2007-AVI-168

Description

Solution

CERTA-2007-AVI-168

Description

Solution

FKIE_CVE-2006-6797

GHSA-JGQ8-8Q6H-FQGV

GSD-2006-6797

Tags

Sightings

Nomenclature