CVE-2006-3648

critical

Description

Unspecified vulnerability in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 and 2003 SP1, allows remote attackers to execute arbitrary code via unspecified vectors involving unhandled exceptions, memory resident applications, and incorrectly "unloading chained exception."

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A841

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-051

http://www.vupen.com/english/advisories/2006/3216

http://www.us-cert.gov/cas/techalerts/TA06-220A.html

http://www.securityfocus.com/bid/19384

http://www.kb.cert.org/vuls/id/411516

http://securitytracker.com/id?1016661

Details

Source: Mitre, NVD

Published: 2006-08-09

Updated: 2018-10-12

Risk Information

CVSS v2

Base Score: 7.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical