Vulnerabilities > CVE-2006-6579 - Unspecified vulnerability in Microsoft products

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

microsoft

NVD

Published: 2006-12-15

Updated: 2024-11-21

Summary

Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Information Server - Microsoft Internet Information Server 1.0 Microsoft Internet Information Server 2.0 Microsoft Internet Information Server 3.0 Microsoft Internet Information Server 4.0 Microsoft Internet Information Server 5.0 Microsoft Internet Information Services 1.0 Microsoft Internet Information Services 2.0	17

Summary

Vulnerable Configurations

References