National Vulnerability Database (NVD) National Vulnerability Database (CVE-2006-0012)

National Cyber-Alert System

Vulnerability Summary for CVE-2006-0012

Original release date:04/12/2006

Last revised:09/05/2008

Source: US-CERT/NIST

Overview

Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "Windows Shell Vulnerability."

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:5.1 (MEDIUM) (AV:N/AC:H/Au:N/C:P/I:P/A:P) (legend)

Impact Subscore: 6.4

Exploitability Subscore: 4.9

CVSS Version 2 Metrics:

Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism

Access Complexity: High

Authentication: Not required to exploit

Impact Type:Provides user account access, Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Technical Alert: TA06-101A

Name: TA06-101A

Hyperlink:http://www.us-cert.gov/cas/techalerts/TA06-101A.html

US-CERT Vulnerability Note: VU#641460

Name: VU#641460

Type: Advisory

Hyperlink:http://www.kb.cert.org/vuls/id/641460

External Source: MS

Name: MS06-015

Type: Patch Information

Hyperlink:http://www.microsoft.com/technet/security/bulletin/ms06-015.mspx

External Source: VUPEN

Name: ADV-2006-1320

Type: Advisory; Patch Information

Hyperlink:http://www.frsirt.com/english/advisories/2006/1320

External Source: SECUNIA

Name: 19606

Type: Advisory; Patch Information

Hyperlink:http://secunia.com/advisories/19606

External Source: XF

Name: win-explorer-com-code-execution(25554)

Hyperlink:http://xforce.iss.net/xforce/xfdb/25554

External Source: BID

Name: 17464

Hyperlink:http://www.securityfocus.com/bid/17464

External Source: OSVDB

Name: 24516

Hyperlink:http://www.osvdb.org/24516

External Source: SECTRACK

Name: 1015897

Hyperlink:http://securitytracker.com/id?1015897

US Government Resource: oval:org.mitre.oval:def:1764

Name: oval:org.mitre.oval:def:1764

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1764

US Government Resource: oval:org.mitre.oval:def:1743

Name: oval:org.mitre.oval:def:1743

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1743

US Government Resource: oval:org.mitre.oval:def:1679

Name: oval:org.mitre.oval:def:1679

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1679

US Government Resource: oval:org.mitre.oval:def:1448

Name: oval:org.mitre.oval:def:1448

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1448

US Government Resource: oval:org.mitre.oval:def:1191

Name: oval:org.mitre.oval:def:1191

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1191

Vulnerable software and versions

Configuration 1

* cpe:/o:microsoft:windows_2000:::advanced_server

* cpe:/o:microsoft:windows_2000:::datacenter_server

* cpe:/o:microsoft:windows_2000:::professional

* cpe:/o:microsoft:windows_2000:::server

* cpe:/o:microsoft:windows_2000::sp1:advanced_server

* cpe:/o:microsoft:windows_2000::sp1:datacenter_server

* cpe:/o:microsoft:windows_2000::sp1:professional

* cpe:/o:microsoft:windows_2000::sp1:server

* cpe:/o:microsoft:windows_2000::sp2:advanced_server

* cpe:/o:microsoft:windows_2000::sp2:datacenter_server

* cpe:/o:microsoft:windows_2000::sp2:professional

* cpe:/o:microsoft:windows_2000::sp2:server

* cpe:/o:microsoft:windows_2000::sp3:advanced_server

* cpe:/o:microsoft:windows_2000::sp3:datacenter_server

* cpe:/o:microsoft:windows_2000::sp3:professional

* cpe:/o:microsoft:windows_2000::sp3:server

* cpe:/o:microsoft:windows_2000::sp4:advanced_server

* cpe:/o:microsoft:windows_2000::sp4:datacenter_server

* cpe:/o:microsoft:windows_2000::sp4:professional

* cpe:/o:microsoft:windows_2000::sp4:server

* cpe:/o:microsoft:windows_2003_server:datacenter_64-bit:sp1

* cpe:/o:microsoft:windows_2003_server:enterprise::64-bit

* cpe:/o:microsoft:windows_2003_server:enterprise:sp1

* cpe:/o:microsoft:windows_2003_server:enterprise_64-bit

* cpe:/o:microsoft:windows_2003_server:enterprise_64-bit:sp1

* cpe:/o:microsoft:windows_2003_server:r2::64-bit

* cpe:/o:microsoft:windows_2003_server:r2::datacenter_64-bit

* cpe:/o:microsoft:windows_2003_server:r2:sp1

* cpe:/o:microsoft:windows_2003_server:standard::64-bit

* cpe:/o:microsoft:windows_2003_server:standard:sp1

* cpe:/o:microsoft:windows_2003_server:standard_64-bit

* cpe:/o:microsoft:windows_2003_server:web

* cpe:/o:microsoft:windows_2003_server:web:sp1

* cpe:/o:microsoft:windows_98::gold

* cpe:/o:microsoft:windows_98se

* cpe:/o:microsoft:windows_me

* cpe:/o:microsoft:windows_xp:::64-bit

* cpe:/o:microsoft:windows_xp:::home

* cpe:/o:microsoft:windows_xp:::media_center

* cpe:/o:microsoft:windows_xp::gold:professional

* cpe:/o:microsoft:windows_xp::sp1:home

* cpe:/o:microsoft:windows_xp::sp1:media_center

* cpe:/o:microsoft:windows_xp::sp2:home

* cpe:/o:microsoft:windows_xp::sp2:media_center

* cpe:/o:microsoft:windows_xp::sp2:tablet_pc

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0012