CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-4627

System Information ActiveX control (msinfo.dll), when accessed via Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via a SaveFile function with a long (1) computer and possibly (2) filename and (3) category argument.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.185

EPSS Ranking 95.0%

CVSS Severity

CVSS v2 Score 5.0

References

http://noderat.spaces.live.com/blog/cns%216ADE4614B66EADD2%211150.entry
http://www.blogger.com/comment.g?blogID=30557436&postID=115190809697529918
http://www.osvdb.org/28381
http://noderat.spaces.live.com/blog/cns%216ADE4614B66EADD2%211150.entry
http://www.blogger.com/comment.g?blogID=30557436&postID=115190809697529918
http://www.osvdb.org/28381

Products affected by CVE-2006-4627

Microsoft » System Information Activex Control » Version: Any

cpe:2.3:a:microsoft:system_information_activex_control:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-4627

Products

Pricing

Contact Us