CVE-2006-0488 : The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in W

The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibly obtain sensitive information, as demonstrated by dumper.asm.

Published 2006-02-01 02:02:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2006-0488

Microsoft » Windows 2000
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP2 Tablet Pc Edition
cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: R2
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-0488

EPSS FAQ

1.42%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 79 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-0488

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2006-0488

Jump to

Vulnerability Details : CVE-2006-0488

Products affected by CVE-2006-0488

Exploit prediction scoring system (EPSS) score for CVE-2006-0488

CVSS scores for CVE-2006-0488

References for CVE-2006-0488