Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1476

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-1476
Last Modified 05 Sep 2008 05:02:00
Published 28 Mar 2006 08:06:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1476

Summary

Windows Firewall in Microsoft Windows XP SP2 produces incorrect application block alerts when the application filename is ".exe" (with no characters before the "."), which might allow local user-assisted users to trick a user into unblocking a Trojan horse program, as demonstrated by a malicious ".exe" program in a folder named "Internet Explorer," which triggers a question about whether to unblock the "Internet Explorer" program.

Vulnerable Systems

Operating System

  • Microsoft Windows Xp


References

BUGTRAQ - 20060327 Re: Microsoft Windows XP SP2 Firewall issue

BUGTRAQ - 20060324 Microsoft Windows XP SP2 Firewall issue

XF - winxp-firewall-exe-bypass(25598)


Last Updated: 27 May 2016 10:42:05