CVE-2006-0023 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-0023
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0023

Description: Microsoft Windows XP SP1 and SP2 before August 2004, and possibly other operating systems and versions, uses insecure default ACLs that allow the Authenticated Users group to gain privileges by modifying critical configuration information for the (1) Simple Service Discovery Protocol (SSDP), (2) Universal Plug and Play Device Host (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP, and (6) DnsCache services, aka "Permissive Windows Services DACLs." NOTE: the NetBT, SCardSvr, DHCP, DnsCache already require privileged access to exploit.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/24463 ST 1015595 1015765 SAID Secunia Advisory: SA18756 Secunia Advisory: SA19313 Secunia Advisory: SA19238 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1671 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1696 MS http://www.microsoft.com/technet/security/bulletin/ms06-011.mspx MISC http://www.microsoft.com/technet/security/advisory/914457.mspx http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=391523&RenditionID= CERT-VN 953860 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/423587/100/0/threaded

Return to the previous page.