Lucene search

[email protected]NVD:CVE-2006-4219

HistoryAug 18, 2006 - 7:04 p.m.

CVE-2006-4219

2006-08-1819:04:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

High

EPSS

0.947

Percentile

99.3%

JSON

The Terminal Services COM object (tsuserex.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by instantiating it as an ActiveX object in Internet Explorer 6.0 SP1 on Microsoft Windows 2003 EE SP1 CN.

Affected configurations

Nvd

Node

microsoftieMatch6.0sp1

VendorProductVersionCPE
microsoftie6.0cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	ie	6.0	cpe:2.3:a:microsoft:ie:6.0:sp1::::::

References

securityreason.com/securityalert/1403

www.securityfocus.com/archive/1/443493/100/0/threaded

www.securityfocus.com/bid/19570

www.xsec.org/index.php?module=Releases&act=view&type=1&id=14

exchange.xforce.ibmcloud.com/vulnerabilities/28444

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

High

EPSS

0.947

Percentile

99.3%

JSON

Related for NVD:CVE-2006-4219

exploitdb1 checkpoint_advisories1 cvelist1 cve1