Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2006-6952

Published: 24/01/2007 Updated: 16/10/2018
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 730
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Host-based Intrusion Prevention System

Vulnerability Summary

Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.

Vulnerable Product Search on Vulmon Subscribe to Product

ca host-based intrusion prevention system core_6.5.4.31

ca host-based intrusion prevention system firewall_6.5.4.10

Exploits

Exploit DB: Computer Associates Personal Firewall 9.0 - HIPS Driver 'kmxfw.sys' Local Privilege Escalation
source: wwwsecurityfocuscom/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities An attacker can leverage these issues to execute arbitrary code with SYSTEM-level privileges This could result in the complete compromise of vulnerable computers These isse ...
Exploit DB: Computer Associates Personal Firewall 9.0 - HIPS Driver 'kmxstart.sys' Local Privilege Escalation
source: wwwsecurityfocuscom/bid/21140/info Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities An attacker can leverage these issues to execute arbitrary code with SYSTEM-level privileges This could result in the complete compromise of vulnerable computers These i ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/archive/1/452286/100/0/threadedhttp://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=38http://www.securityfocus.com/bid/21140http://secunia.com/advisories/22972http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729http://www.osvdb.org/30497http://www.osvdb.org/30498http://www.securityfocus.com/archive/1/458040/100/200/threadedhttp://www.securityfocus.com/archive/1/451952/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/29069/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook