Lucene search

[email protected]NVD:CVE-2006-1313

HistoryJun 13, 2006 - 7:06 p.m.

CVE-2006-1313

2006-06-1319:06:00

[email protected]

web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.936 High

EPSS

Percentile

99.1%

JSON

Microsoft JScript 5.1, 5.5, and 5.6 on Windows 2000 SP4, and 5.6 on Windows XP, Server 2003, Windows 98 and Windows Me, will “release objects early” in certain cases, which results in memory corruption and allows remote attackers to execute arbitrary code.

Affected configurations

NVD

Node

microsoftwindows_2000

microsoftwindows_2000sp1

microsoftwindows_2000sp2

microsoftwindows_2000sp3

microsoftwindows_2000sp4

microsoftwindows_2003_serverMatchdatacenter_edition

microsoftwindows_2003_serverMatchdatacenter_editionsp1

microsoftwindows_2003_serverMatchdatacenter_edition_64-bit

microsoftwindows_2003_serverMatchdatacenter_edition_64-bitsp1

microsoftwindows_2003_serverMatchenterprise_64-bit

microsoftwindows_2003_serverMatchenterprise_editionsp1

microsoftwindows_2003_serverMatchenterprise_edition_64-bit

microsoftwindows_2003_serverMatchenterprise_edition_64-bitsp1

microsoftwindows_2003_serverMatchr2datacenter_64-bit

microsoftwindows_2003_serverMatchsp1enterprise

microsoftwindows_2003_serverMatchstandard

microsoftwindows_2003_serverMatchstandardsp1

microsoftwindows_2003_serverMatchstandard_64-bit

microsoftwindows_2003_serverMatchweb

microsoftwindows_2003_serverMatchwebsp1

microsoftwindows_98gold

microsoftwindows_98se

microsoftwindows_me

microsoftwindows_xp64-bit

microsoftwindows_xphome

microsoftwindows_xpmedia_center

microsoftwindows_xpgoldprofessional

microsoftwindows_xpsp1home

microsoftwindows_xpsp1media_center

microsoftwindows_xpsp2home

microsoftwindows_xpsp2media_center

microsoftwindows_xpsp2tablet_pc

References

secunia.com/advisories/20620

securitytracker.com/id?1016283

www.kb.cert.org/vuls/id/390044

www.osvdb.org/26434

www.securityfocus.com/bid/18359

www.us-cert.gov/cas/techalerts/TA06-164A.html

www.vupen.com/english/advisories/2006/2321

docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-023

exchange.xforce.ibmcloud.com/vulnerabilities/26805

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1067

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1644

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1785

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2003

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.936 High

EPSS

Percentile

99.1%

JSON

Related for NVD:CVE-2006-1313

nessus1 checkpoint_advisories1 cve1 securityvulns1 cvelist1 prion1 cert1