nvd-json-data-feeds/CVE-2006/CVE-2006-00xx/CVE-2006-0023.json

{
  "id": "CVE-2006-0023",
  "sourceIdentifier": "secure@microsoft.com",
  "published": "2006-02-08T02:18:00.000",
  "lastModified": "2018-10-19T15:42:05.527",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Microsoft Windows XP SP1 and SP2 before August 2004, and possibly other operating systems and versions, uses insecure default ACLs that allow the Authenticated Users group to gain privileges by modifying critical configuration information for the (1) Simple Service Discovery Protocol (SSDP), (2) Universal Plug and Play Device Host (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP, and (6) DnsCache services, aka \"Permissive Windows Services DACLs.\"  NOTE: the NetBT, SCardSvr, DHCP, DnsCache already require privileged access to exploit."
    },
    {
      "lang": "es",
      "value": "Microsoft Windows XP SP1 y SP2 anteriores a agosto de 2004, y posiblemente otros sistemas operativos y versiones, usa ACLs inseguras por defecto que permiten al grupo Usuarios autentificados ganar privilegios modificando informaci\u00f3n de configuraci\u00f3n cr\u00edtica de los servicios (1) Protocolo de Descubrimiento de Servicio Simple (SSDP) y (2) 'Plug and Play' Universal (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP y (6) servicios DnsCache, tcc \"DACLs de Servicios de Windows Permisivas\". NOTA: Los servicios NetBT, SCardSvr, DHCP, DnsCache ya requer\u00edan acceso privilegiado para acceder a la explotaci\u00f3n."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P",
          "accessVector": "LOCAL",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.3
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 3.1,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": true,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*",
              "matchCriteriaId": "B9687E6C-EDE9-42E4-93D0-C4144FEC917A"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*",
              "matchCriteriaId": "FB2BE2DE-7B06-47ED-A674-15D45448F357"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://securitytracker.com/id?1015595",
      "source": "secure@microsoft.com"
    },
    {
      "url": "http://securitytracker.com/id?1015765",
      "source": "secure@microsoft.com"
    },
    {
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm",
      "source": "secure@microsoft.com"
    },
    {
      "url": "http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf",
      "source": "secure@microsoft.com"
    },
    {
      "url": "http://www.kb.cert.org/vuls/id/953860",
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ]
    },
    {
      "url": "http://www.microsoft.com/technet/security/advisory/914457.mspx",
      "source": "secure@microsoft.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.securityfocus.com/archive/1/423587/100/0/threaded",
      "source": "secure@microsoft.com"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2006/0417",
      "source": "secure@microsoft.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=391523&RenditionID=",
      "source": "secure@microsoft.com"
    },
    {
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-011",
      "source": "secure@microsoft.com"
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24463",
      "source": "secure@microsoft.com"
    },
    {
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1671",
      "source": "secure@microsoft.com"
    },
    {
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1696",
      "source": "secure@microsoft.com"
    }
  ]
}
bootstrap 2023-04-24 12:24:31 +02:00			`{`
			`"id": "CVE-2006-0023",`
			`"sourceIdentifier": "secure@microsoft.com",`
			`"published": "2006-02-08T02:18:00.000",`
			`"lastModified": "2018-10-19T15:42:05.527",`
			`"vulnStatus": "Modified",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			"value": "Microsoft Windows XP SP1 and SP2 before August 2004, and possibly other operating systems and versions, uses insecure default ACLs that allow the Authenticated Users group to gain privileges by modifying critical configuration information for the (1) Simple Service Discovery Protocol (SSDP), (2) Universal Plug and Play Device Host (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP, and (6) DnsCache services, aka \"Permissive Windows Services DACLs.\" NOTE: the NetBT, SCardSvr, DHCP, DnsCache already require privileged access to exploit."
			`},`
			`{`
			`"lang": "es",`
			"value": "Microsoft Windows XP SP1 y SP2 anteriores a agosto de 2004, y posiblemente otros sistemas operativos y versiones, usa ACLs inseguras por defecto que permiten al grupo Usuarios autentificados ganar privilegios modificando informaci\u00f3n de configuraci\u00f3n cr\u00edtica de los servicios (1) Protocolo de Descubrimiento de Servicio Simple (SSDP) y (2) 'Plug and Play' Universal (UPnP), (3) NetBT, (4) SCardSvr, (5) DHCP y (6) servicios DnsCache, tcc \"DACLs de Servicios de Windows Permisivas\". NOTA: Los servicios NetBT, SCardSvr, DHCP, DnsCache ya requer\u00edan acceso privilegiado para acceder a la explotaci\u00f3n."
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV2": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"cvssData": {`
			`"version": "2.0",`
			`"vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P",`
			`"accessVector": "LOCAL",`
			`"accessComplexity": "LOW",`
			`"authentication": "SINGLE",`
			`"confidentialityImpact": "PARTIAL",`
			`"integrityImpact": "PARTIAL",`
			`"availabilityImpact": "PARTIAL",`
			`"baseScore": 4.3`
			`},`
			`"baseSeverity": "MEDIUM",`
			`"exploitabilityScore": 3.1,`
			`"impactScore": 6.4,`
			`"acInsufInfo": false,`
			`"obtainAllPrivilege": false,`
			`"obtainUserPrivilege": true,`
			`"obtainOtherPrivilege": false,`
			`"userInteractionRequired": false`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-264"`
			`}`
			`]`
			`}`
			`],`
			`"configurations": [`
			`{`
			`"nodes": [`
			`{`
			`"operator": "OR",`
			`"negate": false,`
			`"cpeMatch": [`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:microsoft:windows_xp::sp1:tablet_pc:::::",`
			`"matchCriteriaId": "B9687E6C-EDE9-42E4-93D0-C4144FEC917A"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:o:microsoft:windows_xp::sp2:tablet_pc:::::",`
			`"matchCriteriaId": "FB2BE2DE-7B06-47ED-A674-15D45448F357"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "http://securitytracker.com/id?1015595",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "http://securitytracker.com/id?1015765",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "http://www.kb.cert.org/vuls/id/953860",`
			`"source": "secure@microsoft.com",`
			`"tags": [`
			`"Third Party Advisory",`
			`"US Government Resource"`
			`]`
			`},`
			`{`
			`"url": "http://www.microsoft.com/technet/security/advisory/914457.mspx",`
			`"source": "secure@microsoft.com",`
			`"tags": [`
			`"Vendor Advisory"`
			`]`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/archive/1/423587/100/0/threaded",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "http://www.vupen.com/english/advisories/2006/0417",`
			`"source": "secure@microsoft.com",`
			`"tags": [`
			`"Vendor Advisory"`
			`]`
			`},`
			`{`
			`"url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=391523&RenditionID=",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-011",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24463",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1671",`
			`"source": "secure@microsoft.com"`
			`},`
			`{`
			`"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1696",`
			`"source": "secure@microsoft.com"`
			`}`
			`]`
			`}`