Vulnerability Details CVE-2006-1475
Windows Firewall in Microsoft Windows XP SP2 does not produce application alerts when an application is executed using the NTFS Alternate Data Streams (ADS) filename:stream syntax, which might allow local users to launch a Trojan horse attack in which the victim does not obtain the alert that Windows Firewall would have produced for a non-ADS file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.7%
CVSS Severity
CVSS v2 Score 2.1
References
- http://www.securityfocus.com/archive/1/428970/100/0/threaded
- http://www.securityfocus.com/archive/1/429111/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25597
- http://www.securityfocus.com/archive/1/428970/100/0/threaded
- http://www.securityfocus.com/archive/1/429111/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25597
Products affected by CVE-2006-1475
-
cpe:2.3:o:microsoft:windows_xp:-