Lucene search

[email protected]CVE-2006-0488

HistoryFeb 01, 2006 - 2:02 a.m.

CVE-2006-0488

2006-02-0102:02:00

[email protected]

web.nvd.nist.gov

cve-2006-0488

vdm emulation

windows

local users

sensitive information

security vulnerability

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.1%

JSON

The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibly obtain sensitive information, as demonstrated by dumper.asm.

Affected configurations

NVD

Node

microsoftwindows_2000

microsoftwindows_2003_serverMatchr2

microsoftwindows_xpsp2tablet_pc

CPENameOperatorVersion
microsoft:windows_2000microsoft windows 2000eq*
microsoft:windows_2003_servermicrosoft windows 2003 servereqr2
microsoft:windows_xpmicrosoft windows xpeq*

CPE	Name	Operator	Version
microsoft:windows_2000	microsoft windows 2000	eq	*
microsoft:windows_2003_server	microsoft windows 2003 server	eq	r2
microsoft:windows_xp	microsoft windows xp	eq	*

References

www.securityfocus.com/archive/1/423169/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/24471

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.1%

JSON

Related for CVE-2006-0488

nvd1 prion1 cvelist1