Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2006-4704
HistoryNov 01, 2006 - 3:07 p.m.

CVE-2006-4704

2006-11-0115:07:00
[email protected]
web.nvd.nist.gov
5

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

Low

EPSS

0.964

Percentile

99.6%

JSON

Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) ActiveX control (WmiScriptUtils.dll) in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka “WMI Object Broker Vulnerability.”

Affected configurations

Nvd
Node
microsoftvisual_studio_.netMatch2005
VendorProductVersionCPE
microsoftvisual_studio_.net2005cpe:2.3:a:microsoft:visual_studio_.net:2005:*:*:*:*:*:*:*

References

Related

cert 1
saint 4
securityvulns 2
zdi 1
nessus 1
cve 1
cvelist 1
checkpoint_advisories 2
metasploit 1
exploitdb 1
cert
cert
WMI Object Broker ActiveX Control bypasses ActiveX security model
2006-11-01 00:00:00
saint
saint
Microsoft Visual Studio 2005 WMI Object Broker vulnerability
2007-01-15 00:00:00
Microsoft Visual Studio 2005 WMI Object Broker vulnerability
2007-01-15 00:00:00
Microsoft Visual Studio 2005 WMI Object Broker vulnerability
2007-01-15 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS06-073 Vulnerability in Visual Studio 2005 Could Allow Remote Code Execution (925674)
2006-12-12 00:00:00
ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability
2006-12-13 00:00:00
zdi
zdi
Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability
2006-12-12 00:00:00
nessus
nessus
MS06-073: Vulnerability in Visual Studio 2005 Could Allow Remote Code Execution (925674)
2006-12-12 00:00:00
cve
cve
CVE-2006-4704
2006-11-01 15:07:00
cvelist
cvelist
CVE-2006-4704
2006-11-01 15:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Visual Studio WMI Object Code Execution (MS06-073; CVE-2006-4704)
2006-11-16 00:00:00
Microsoft Visual Studio WMI Object Code Execution (MS06-073) - Ver2 (CVE-2006-4704)
2015-05-18 00:00:00
metasploit
metasploit
MS06-014 Microsoft Internet Explorer COM CreateObject Code Execution
2009-09-09 21:23:11
exploitdb
exploitdb
Microsoft Internet Explorer - COM CreateObject Code Execution (MS06-014/MS06-073) (Metasploit)
2010-09-20 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

Low

EPSS

0.964

Percentile

99.6%

JSON
Related for NVD:CVE-2006-4704
cert1saint4securityvulns2zdi1nessus1cve1cvelist1checkpoint_advisories2metasploit1exploitdb1