CVE-2006-0008

Severity

72%

Complexity

39%

Confidentiality

165%

The ShellAbout API call in Korean Input Method Editor (IME) in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License Agreement" link, which executes Notepad with the privileges of the program that displays the about box.

The ShellAbout API call in Korean Input Method Editor (IME) in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License Agreement" link, which executes Notepad with the privileges of the program that displays the about box.

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Microsoft

First reported 19 years ago

2006-02-14 19:06:00

Last updated 6 years ago

2018-10-30 16:25:00

Affected Software

Microsoft Office 2003

2003

Microsoft Office 2003 sp1

2003

Microsoft Office 2003 sp2

2003

Microsoft Windows XP Professional Gold

Microsoft Windows XP Service Pack 1 Home Edition

Microsoft windows xp_sp1 media_center

Microsoft Windows XP Service Pack 2 Home Edition

Microsoft windows xp_sp2 media_center

Microsoft windows xp_sp2 tablet_pc

References

18859

Patch, Vendor Advisory

1015631

Patch

VU#739844

Third Party Advisory, US Government Resource

http://www.ryanstyle.com/alert/my/5/ms06_009_eng.html

Vendor Advisory

20060215 Security advisory: Windows IME Vulnerability (MS06-009)

16643

Patch

ADV-2006-0578

Vendor Advisory

MS06-009

win-korean-ime-privilege-elevation(24492)

oval:org.mitre.oval:def:1595

oval:org.mitre.oval:def:1650

oval:org.mitre.oval:def:1664

oval:org.mitre.oval:def:1688

oval:org.mitre.oval:def:727

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.