CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2378

Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.606

EPSS Ranking 98.2%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2006-2378

Microsoft » Ie » Version: 6.0

cpe:2.3:a:microsoft:ie:6.0
Microsoft » Internet Explorer » Version: 5.0.1

cpe:2.3:a:microsoft:internet_explorer:5.0.1
Microsoft » Internet Explorer » Version: 6.0

cpe:2.3:a:microsoft:internet_explorer:6.0
Microsoft » Windows 2003 Server » Version: datacenter_edition

cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition
Microsoft » Windows 2003 Server » Version: datacenter_edition_64-bit

cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit
Microsoft » Windows 2003 Server » Version: enterprise_64-bit

cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit
Microsoft » Windows 2003 Server » Version: enterprise_edition

cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition
Microsoft » Windows 2003 Server » Version: enterprise_edition_64-bit

cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit
Microsoft » Windows 2003 Server » Version: r2

cpe:2.3:o:microsoft:windows_2003_server:r2
Microsoft » Windows 2003 Server » Version: sp1

cpe:2.3:o:microsoft:windows_2003_server:sp1
Microsoft » Windows 2003 Server » Version: standard

cpe:2.3:o:microsoft:windows_2003_server:standard
Microsoft » Windows 2003 Server » Version: standard_64-bit

cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit
Microsoft » Windows 2003 Server » Version: web

cpe:2.3:o:microsoft:windows_2003_server:web
Microsoft » Windows Xp » Version: Any

cpe:2.3:o:microsoft:windows_xp:*
Microsoft » Windows Xp » Version: N/A

cpe:2.3:o:microsoft:windows_xp:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2378

Products

Pricing

Contact Us