QwikSec

Security Database

CVE

CWE

Training

CVE-2006-6696

Published: Dec 22, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by calling the MessageBox function with a MB_SERVICE_NOTIFICATION message with crafted data, which sends a HardError message to Client/Server Runtime Server Subsystem (CSRSS) process, which is not properly handled when invoking the UserHardError and GetHardErrorText functions in WINSRV.DLL.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.kuban.ru/forum_new/forum2/files/19124.html

x_refsource_MISC

20061230 csrss.exe double-free vulnerability - arbitrary DWORD overwrite exploit

mailing-list

x_refsource_BUGTRAQ

vendor-advisory

x_refsource_HP

vdb-entry

x_refsource_SECTRACK

http://groups.google.ca/group/microsoft.public.win32.programmer.kernel/browse_thread/thread/c5946bf40f227058/7bd7b5d66a4e5aff

x_refsource_MISC

http://www.security.nnov.ru/Gnews944.html

x_refsource_MISC

http://research.eeye.com/html/alerts/zeroday/20061215.html

x_refsource_MISC

http://www.determina.com/security.research/vulnerabilities/csrss-harderror.html

x_refsource_MISC

20061221 Re: [Full-disclosure] Microsoft Windows XP/2003/Vista memorycorruption 0day

mailing-list

x_refsource_BUGTRAQ

http://blogs.technet.com/msrc/archive/2006/12/22/new-report-of-a-windows-vulnerability.aspx

x_refsource_CONFIRM

20061222 Re: Re: [Full-disclosure] Microsoft Windows XP/2003/Vista memory corruption 0day

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_MS

oval:org.mitre.oval:def:1816

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_VUPEN

http://www.security.nnov.ru/files/messagebox.c

x_refsource_MISC

20061221 Microsoft Windows XP/2003/Vista memory corruption 0day

mailing-list

x_refsource_FULLDISC

vdb-entry

x_refsource_BID

20061221 Re: [Full-disclosure] Microsoft Windows XP/2003/Vista memory corruption 0day

mailing-list

x_refsource_BUGTRAQ

20061221 Microsoft Windows XP/2003/Vista memory corruption 0day

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_HP

http://isc.sans.org/diary.php?n&storyid=1965

x_refsource_MISC

vdb-entry

x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.