Lucene search
SAINT CorporationSAINT:D7F75EFDCAC463A90F06C660FBFD2D10HistoryJul 16, 2007 - 12:00 a.m.
Windows MDAC RDS.Dataspace ActiveX control vulnerability
2007-07-1600:00:00
SAINT Corporation
www.saintcorporation.com
21
EPSS
0.967
Percentile
99.7%
Added: 07/16/2007
CVE: CVE-2006-0003
BID: 17462
OSVDB: 24517
Background
Microsoft Data Access Components (MDAC) enable Universal Data Access in Windows applications deployed over a network.
Problem
A cross-zone scripting vulnerability in the RDS.Dataspace ActiveX control in MDAC allows command execution when a user loads a specially crafted web page.
Resolution
Apply the update referenced in Microsoft Security Bulletin 06-014.
References
<http://www.kb.cert.org/vuls/id/234812>
Limitations
On Windows 2000, MDAC must be installed.
Platforms
Windows
Related
cve
cve
CVE-2006-0003
2006-04-12 00:02:00
canvas
canvas
Immunity Canvas: MS06_014
2006-04-12 00:02:00
cert
cert
RDS.Dataspace ActiveX control bypasses ActiveX security model
2006-04-11 00:00:00
prion
prion
Design/Logic Flaw
2006-04-12 00:02:00
saint
saint
Windows MDAC RDS.Dataspace ActiveX control vulnerability
2007-07-16 00:00:00
Windows MDAC RDS.Dataspace ActiveX control vulnerability
2007-07-16 00:00:00
Windows MDAC RDS.Dataspace ActiveX control vulnerability
2007-07-16 00:00:00
nessus
nessus
MS06-014: Vulnerability in MDAC Could Allow Code Execution (911562)
2006-04-11 00:00:00
securityvulns
securityvulns
nvd
nvd
CVE-2006-0003
2006-04-12 00:02:00
cvelist
cvelist
CVE-2006-0003
2006-04-12 00:00:00
checkpoint_advisories
checkpoint_advisories
Internet Explorer Multiple Protections (CVE-2005-2831; CVE-2006-0003)
2006-05-01 00:00:00
threatpost
threatpost
Popular Sports Site Goal.com Serves Malware
2011-05-03 19:05:02
thn
thn
Phoenix Exploit's Kit 2.8 mini version
2011-10-12 17:41:00