检测
分析

cve - 2006 - 1315

媒介

描述

服务器服务(深水救生艇。SYS司机)在Microsoft Windows 2000 SP4, XP SP1和SP2, Server 2003 SP1,和其他产品,允许远程攻击者获取敏感信息通过精心设计要求在SMB缓冲区泄漏信息,不正确地初始化,即“SMB信息披露漏洞。”

引用

http://secunia.com/advisories/21007

http://securitytracker.com/id?1016467

http://www.kb.cert.org/vuls/id/333636

http://www.osvdb.org/27155

http://www.securityfocus.com/archive/1/439881/100/0/threaded

http://www.securityfocus.com/bid/18891

http://www.vupen.com/english/advisories/2006/2753

https://docs.microsoft.com/en - us/security updates/securitybulletins/2006/ms06 - 035

https://exchange.xforce.ibmcloud.com/vulnerabilities/26820

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3

细节

发表:2006-07-11

更新:2018-10-18

类型:NVD-CWE-Other

风险信息

CVSS v2

基础分数:5

向量:AV: N /交流:L /非盟:N / C: P / I: N: N

影响得分:2.9

可利用性得分:10

严重程度:媒介

Baidu
map