Vulnerability Details : CVE-2006-6496
The (1) VetMONNT.sys and (2) VetFDDNT.sys drivers in CA Anti-Virus 2007 8.1, Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0 do not properly handle NULL buffers, which allows local users with administrative access to cause a denial of service (system crash) via certain IOCTLs.
Vulnerability category: Denial of service
Products affected by CVE-2006-6496
- cpe:2.3:a:broadcom:etrust_antivirus:8.2:beta:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_antivirus:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:internet_security_suite:3.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-6496
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-6496
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.6
|
MEDIUM | AV:L/AC:M/Au:S/C:C/I:C/A:C |
2.7
|
10.0
|
NIST |
References for CVE-2006-6496
-
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34870
-
http://securitytracker.com/id?1017381
-
http://www.securityfocus.com/bid/21593
-
http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=41
-
http://securitytracker.com/id?1017382
-
http://www.securityfocus.com/archive/1/454420/100/0/threaded
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/30909
-
http://crm.my-etrust.com/CIDocument.asp?KDId=2651&GUID=9FD7E4F8362C4A168D88B4FFA34DCB4C
-
http://www.vupen.com/english/advisories/2006/5010
Jump to