CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-5448

The drmstor.dll ActiveX object in Microsoft Windows Digital Rights Management System (DRM) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long parameter to the StoreLicense function, which triggers "memory corruption" and possibly a buffer overflow.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.331

EPSS Ranking 96.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://securityreason.com/securityalert/1756
http://www.securityfocus.com/archive/1/448097/100/200/threaded
http://securityreason.com/securityalert/1756
http://www.securityfocus.com/archive/1/448097/100/200/threaded

Products affected by CVE-2006-5448

Microsoft » Windows Digital Rights Management » Version: N/A

cpe:2.3:a:microsoft:windows_digital_rights_management:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5448

Products

Pricing

Contact Us