CVE-2006-6385

Stack-based buffer overflow in Intel PRO 10/100, PRO/1000, and PRO/10GbE PCI, PCI-X, and PCIe network adapter drivers (aka NDIS miniport drivers) before 20061205 allows local users to execute arbitrary code with "kernel-level" privileges via an incorrect function call in certain OID handlers.
References
Link Resource
http://lists.freebsd.org/pipermail/freebsd-security/2006-December/004186.html
http://research.eeye.com/html/advisories/published/AD20061207.html
http://research.eeye.com/html/advisories/upcoming/20060710.html
http://secunia.com/advisories/23221 Vendor Advisory
http://securityreason.com/securityalert/2007
http://securitytracker.com/id?1017346
http://www.fujitsu.com/global/support/software/security/products-f/primergy-200701e.html
http://www.intel.com/support/network/sb/CS-023726.htm Patch
http://www.kb.cert.org/vuls/id/296681 US Government Resource
http://www.securityfocus.com/archive/1/453852/100/0/threaded
http://www.securityfocus.com/bid/21456
http://www.vupen.com/english/advisories/2006/4871
https://exchange.xforce.ibmcloud.com/vulnerabilities/30750
http://lists.freebsd.org/pipermail/freebsd-security/2006-December/004186.html
http://research.eeye.com/html/advisories/published/AD20061207.html
http://research.eeye.com/html/advisories/upcoming/20060710.html
http://secunia.com/advisories/23221 Vendor Advisory
http://securityreason.com/securityalert/2007
http://securitytracker.com/id?1017346
http://www.fujitsu.com/global/support/software/security/products-f/primergy-200701e.html
http://www.intel.com/support/network/sb/CS-023726.htm Patch
http://www.kb.cert.org/vuls/id/296681 US Government Resource
http://www.securityfocus.com/archive/1/453852/100/0/threaded
http://www.securityfocus.com/bid/21456
http://www.vupen.com/english/advisories/2006/4871
https://exchange.xforce.ibmcloud.com/vulnerabilities/30750
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:intel:pro_10_100_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_10_100_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_10_100_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_1000_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_1000_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_1000_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_1000_pcie_adapters:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:pro_10gbe_adapters:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:22

Type Values Removed Values Added
References () http://lists.freebsd.org/pipermail/freebsd-security/2006-December/004186.html - () http://lists.freebsd.org/pipermail/freebsd-security/2006-December/004186.html -
References () http://research.eeye.com/html/advisories/published/AD20061207.html - () http://research.eeye.com/html/advisories/published/AD20061207.html -
References () http://research.eeye.com/html/advisories/upcoming/20060710.html - () http://research.eeye.com/html/advisories/upcoming/20060710.html -
References () http://secunia.com/advisories/23221 - Vendor Advisory () http://secunia.com/advisories/23221 - Vendor Advisory
References () http://securityreason.com/securityalert/2007 - () http://securityreason.com/securityalert/2007 -
References () http://securitytracker.com/id?1017346 - () http://securitytracker.com/id?1017346 -
References () http://www.fujitsu.com/global/support/software/security/products-f/primergy-200701e.html - () http://www.fujitsu.com/global/support/software/security/products-f/primergy-200701e.html -
References () http://www.intel.com/support/network/sb/CS-023726.htm - Patch () http://www.intel.com/support/network/sb/CS-023726.htm - Patch
References () http://www.kb.cert.org/vuls/id/296681 - US Government Resource () http://www.kb.cert.org/vuls/id/296681 - US Government Resource
References () http://www.securityfocus.com/archive/1/453852/100/0/threaded - () http://www.securityfocus.com/archive/1/453852/100/0/threaded -
References () http://www.securityfocus.com/bid/21456 - () http://www.securityfocus.com/bid/21456 -
References () http://www.vupen.com/english/advisories/2006/4871 - () http://www.vupen.com/english/advisories/2006/4871 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/30750 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/30750 -

Information

Published : 2006-12-08 01:28

Updated : 2024-11-21 00:22


NVD link : CVE-2006-6385

Mitre link : CVE-2006-6385

CVE.ORG link : CVE-2006-6385


JSON object : View

Products Affected

intel

  • pro_10_100_adapters
  • pro_10gbe_adapters
  • pro_1000_pcie_adapters
  • pro_1000_adapters