CVE-2006-0023
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Microsoft Windows XP SP1 and SP2 before August 2004, and possibly other operating systems and versions, uses insecure default ACLs that allow the Authenticated Users group to gain privileges by modifying critical configuration information for the (1) Simple Service Discovery Protocol (SSDP), (2) Universal Plug and Play Device Host (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP, and (6) DnsCache services, aka "Permissive Windows Services DACLs." NOTE: the NetBT, SCardSvr, DHCP, DnsCache already require privileged access to exploit.
Microsoft Windows XP SP1 y SP2 anteriores a agosto de 2004, y posiblemente otros sistemas operativos y versiones, usa ACLs inseguras por defecto que permiten al grupo Usuarios autentificados ganar privilegios modificando información de configuración crítica de los servicios (1) Protocolo de Descubrimiento de Servicio Simple (SSDP) y (2) 'Plug and Play' Universal (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP y (6) servicios DnsCache, tcc "DACLs de Servicios de Windows Permisivas". NOTA: Los servicios NetBT, SCardSvr, DHCP, DnsCache ya requerían acceso privilegiado para acceder a la explotación.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2005-11-30 CVE Reserved
- 2006-02-08 CVE Published
- 2024-05-30 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (16)
| URL | Tag | Source |
|---|---|---|
| http://securitytracker.com/id?1015595 | Vdb Entry | |
| http://securitytracker.com/id?1015765 | Vdb Entry | |
| http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm | X_refsource_confirm | |
| http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf | X_refsource_misc | |
| http://www.kb.cert.org/vuls/id/953860 | Third Party Advisory |
|
| http://www.securityfocus.com/archive/1/423587/100/0/threaded | Mailing List | |
| http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=391523&RenditionID= | X_refsource_confirm | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/24463 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1671 | Signature | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1696 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/18756 | 2018-10-19 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/19238 | 2018-10-19 | |
| http://secunia.com/advisories/19313 | 2018-10-19 | |
| http://www.microsoft.com/technet/security/advisory/914457.mspx | 2018-10-19 | |
| http://www.vupen.com/english/advisories/2006/0417 | 2018-10-19 | |
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-011 | 2018-10-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Microsoft Search vendor "Microsoft" | Windows Xp Search vendor "Microsoft" for product "Windows Xp" | * | sp1, tablet_pc |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows Xp Search vendor "Microsoft" for product "Windows Xp" | * | sp2, tablet_pc |
Affected
| ||||||