Vulnerability CVE-2006-2378

Vulnerability Name:

CVE-2006-2378 (CCN-26809)

Assigned:

2006-06-13

Published:

2006-06-13

Updated:

2021-07-23

Summary:

Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.

CVSS v3 Severity:

5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

5.1 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2006-2378

Source: CCN
Type: SA20605
Microsoft Windows ART Image Handling Buffer Overflow

Source: SECUNIA
Type: Vendor Advisory
20605

Source: CCN
Type: SECTRACK ID: 1016292
Microsoft Windows Buffer Overflow in AOL ART Image Rendering Library Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1016292

Source: CCN
Type: ASA-2006-126
Windows Security Updates for June 2006 - (MS06-021 - MS06-032)

Source: IDEFENSE
Type: UNKNOWN
20060613 Microsoft Internet Explorer ART File Heap Corruption Vulnerability

Source: CCN
Type: US-CERT VU#923236
Microsoft Windows ART image handling buffer overflow

Source: CERT-VN
Type: Patch, US Government Resource
VU#923236

Source: CCN
Type: Microsoft Security Bulletin MS06-022
Vulnerability in ART Image Rendering Could Allow Remote Code Execution (918439)

Source: OSVDB
Type: UNKNOWN
26432

Source: CCN
Type: OSVDB ID: 26432
Microsoft Windows jgdw400.dll ART Image Rendering Overflow

Source: BID
Type: Patch
18394

Source: CCN
Type: BID-18394
Microsoft Windows Malformed ART Image Remote Code Execution Vulnerability

Source: CERT
Type: US Government Resource
TA06-164A

Source: VUPEN
Type: UNKNOWN
ADV-2006-2320

Source: MS
Type: UNKNOWN
MS06-022

Source: XF
Type: UNKNOWN
win-art-image-bo(26809)

Source: XF
Type: UNKNOWN
win-art-image-bo(26809)

Source: CCN
Type: iDefense Advisory: 06.13.06
Microsoft Internet Explorer ART File Heap Corruption Vulnerability

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1590

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1640

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1668

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1756

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1866

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.0.1:sp3:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

Configuration 2:

cpe:/o:microsoft:windows_2003_server:datacenter_edition:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:datacenter_edition:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp1:*:enterprise:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:standard:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:datacenter_edition_64-bit:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:datacenter_edition_64-bit:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:standard:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:standard_64-bit:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp1:64-bit:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:enterprise_edition_64-bit:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:enterprise_64-bit:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:enterprise_edition_64-bit:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp2:home:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:r2:*:datacenter_64-bit:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:web:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:*:home:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:enterprise_edition:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

Configuration CCN 1:

cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:1590	V	ART Image Rendering Vulnerability (2K/XP)	2014-02-24
oval:org.mitre.oval:def:1756	V	ART Image Rendering Vulnerability (Win2K)	2014-02-24
oval:org.mitre.oval:def:1640	V	ART Image Rendering Vulnerability (XP,SP2)	2011-05-16
oval:org.mitre.oval:def:1668	V	ART Image Rendering Vulnerability (64-bit XP)	2011-05-16
oval:org.mitre.oval:def:1866	V	ART Image Rendering Vulnerability (WinS03)	2011-05-09

BACK