7.5 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.3%
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to execute arbitrary code by calling the MrxSmbCscIoctlOpenForCopyChunk function with the METHOD_NEITHER method flag and an arbitrary address, possibly for kernel memory, aka the “SMB Driver Elevation of Privilege Vulnerability.”
secunia.com/advisories/20635
securitytracker.com/id?1016288
www.idefense.com/intelligence/vulnerabilities/display.php?id=408
www.osvdb.org/26440
www.securityfocus.com/bid/18356
www.vupen.com/english/advisories/2006/2327
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-030
exchange.xforce.ibmcloud.com/vulnerabilities/26828
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1137
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1730
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1792
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1904
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1942
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2007