7.5
CVE-2006-5584
- EPSS 30.45%
- Veröffentlicht 13.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:31:28
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 uses a TFTP server that allows anonymous access, which allows remote attackers to upload and overwrite arbitrary files to gain privileges on systems that use RIS.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows 2000 Updatesp4 Langfr
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 30.45% | 0.98 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.securityfocus.com/archive/1/454969/100/200/threaded
http://www.us-cert.gov/cas/techalerts/TA06-346A.html
http://secunia.com/advisories/23312
http://securitytracker.com/id?1017368
http://www.kb.cert.org/vuls/id/238064
http://www.securityfocus.com/bid/21495
http://www.vupen.com/english/advisories/2006/4970
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-077
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A375