7.8 High
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.884 High
EPSS
Percentile
98.6%
Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and “crafted files and directories,” aka the “Windows Shell Vulnerability.”
secunia.com/advisories/19606
securitytracker.com/id?1015897
www.kb.cert.org/vuls/id/641460
www.osvdb.org/24516
www.securityfocus.com/bid/17464
www.us-cert.gov/cas/techalerts/TA06-101A.html
www.vupen.com/english/advisories/2006/1320
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-015
exchange.xforce.ibmcloud.com/vulnerabilities/25554
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1191
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1448
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1679
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1743
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1764