ID CVE-2006-2378
Summary Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
References
Vulnerable Configurations
  • Microsoft Internet Explorer 5.0.1
    cpe:2.3:a:microsoft:ie:5.0.1
  • Microsoft Internet Explorer 5.0.1 SP1
    cpe:2.3:a:microsoft:ie:5.0.1:sp1
  • Microsoft Internet Explorer 5.0.1 SP2
    cpe:2.3:a:microsoft:ie:5.0.1:sp2
  • Microsoft Internet Explorer 5.0.1 SP3
    cpe:2.3:a:microsoft:ie:5.0.1:sp3
  • Microsoft Internet Explorer 5.0.1 Service Pack 4
    cpe:2.3:a:microsoft:ie:5.0.1:sp4
  • Microsoft Internet Explorer 6.0
    cpe:2.3:a:microsoft:ie:6.0
  • cpe:2.3:a:microsoft:ie:6.0:sp1
    cpe:2.3:a:microsoft:ie:6.0:sp1
  • cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition
    cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition
  • cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition:sp1
    cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition:sp1
  • cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit
    cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit
  • cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit:sp1
    cpe:2.3:o:microsoft:windows_2003_server:datacenter_edition_64-bit:sp1
  • cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit
    cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit
  • cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition:sp1
    cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition:sp1
  • cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit
    cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit
  • cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit:sp1
    cpe:2.3:o:microsoft:windows_2003_server:enterprise_edition_64-bit:sp1
  • cpe:2.3:o:microsoft:windows_2003_server:r2:-:datacenter_64-bit
    cpe:2.3:o:microsoft:windows_2003_server:r2:-:datacenter_64-bit
  • cpe:2.3:o:microsoft:windows_2003_server:sp1:-:enterprise
    cpe:2.3:o:microsoft:windows_2003_server:sp1:-:enterprise
  • cpe:2.3:o:microsoft:windows_2003_server:standard
    cpe:2.3:o:microsoft:windows_2003_server:standard
  • cpe:2.3:o:microsoft:windows_2003_server:standard:sp1
    cpe:2.3:o:microsoft:windows_2003_server:standard:sp1
  • cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit
    cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit
  • cpe:2.3:o:microsoft:windows_2003_server:web
    cpe:2.3:o:microsoft:windows_2003_server:web
  • cpe:2.3:o:microsoft:windows_2003_server:web:sp1
    cpe:2.3:o:microsoft:windows_2003_server:web:sp1
  • cpe:2.3:o:microsoft:windows_xp:-:64-bit
    cpe:2.3:o:microsoft:windows_xp:-:64-bit
  • cpe:2.3:o:microsoft:windows_xp:-:home
    cpe:2.3:o:microsoft:windows_xp:-:home
  • cpe:2.3:o:microsoft:windows_xp:-:media_center
    cpe:2.3:o:microsoft:windows_xp:-:media_center
  • Microsoft Windows XP Professional Gold
    cpe:2.3:o:microsoft:windows_xp:-:gold:professional
  • cpe:2.3:o:microsoft:windows_xp:-:sp1:64-bit
    cpe:2.3:o:microsoft:windows_xp:-:sp1:64-bit
  • Microsoft Windows XP Service Pack 1 Home Edition
    cpe:2.3:o:microsoft:windows_xp:-:sp1:home
  • Microsoft windows xp_sp1 media_center
    cpe:2.3:o:microsoft:windows_xp:-:sp1:media_center
  • Microsoft Windows XP Service Pack 2 Home Edition
    cpe:2.3:o:microsoft:windows_xp:-:sp2:home
  • Microsoft windows xp_sp2 media_center
    cpe:2.3:o:microsoft:windows_xp:-:sp2:media_center
  • Microsoft windows xp_sp2 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp2:tablet_pc
CVSS
Base: 6.8 (as of 14-06-2006 - 14:09)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS06-022.NASL
description The remote host is running a version of Windows that contains a flaw in the Hyperlink Object Library. An attacker may exploit this flaw to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to construct a malicious hyperlink and lure a victim into clicking it.
last seen 2019-02-21
modified 2018-11-15
plugin id 21686
published 2006-06-13
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=21686
title MS06-022: Vulnerability in ART Image Rendering Could Allow Remote Code Execution (918439)
oval via4
  • accepted 2014-02-24T04:00:20.636-05:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    • name Maria Mikhno
      organization ALTX-SOFT
    description Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
    family windows
    id oval:org.mitre.oval:def:1590
    status accepted
    submitted 2006-06-14T09:55:00.000-04:00
    title ART Image Rendering Vulnerability (2K/XP)
    version 70
  • accepted 2011-05-16T04:01:28.501-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
    family windows
    id oval:org.mitre.oval:def:1640
    status accepted
    submitted 2006-06-14T09:55:00.000-04:00
    title ART Image Rendering Vulnerability (XP,SP2)
    version 68
  • accepted 2011-05-16T04:01:32.674-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
    family windows
    id oval:org.mitre.oval:def:1668
    status accepted
    submitted 2006-06-14T09:55:00.000-04:00
    title ART Image Rendering Vulnerability (64-bit XP)
    version 67
  • accepted 2014-02-24T04:00:22.931-05:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Anna Min
      organization BigFix, Inc
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    • name Maria Mikhno
      organization ALTX-SOFT
    description Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
    family windows
    id oval:org.mitre.oval:def:1756
    status accepted
    submitted 2006-06-14T09:55:00.000-04:00
    title ART Image Rendering Vulnerability (Win2K)
    version 71
  • accepted 2011-05-09T04:01:22.805-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in the ART Image Rendering component (jgdw400.dll) in Microsoft Windows XP SP1 and Sp2, Server 2003 SP1 and earlier, and Windows 98 and Me allows remote attackers to execute arbitrary code via a crafted ART image that causes heap corruption.
    family windows
    id oval:org.mitre.oval:def:1866
    status accepted
    submitted 2006-06-14T09:55:00.000-04:00
    title ART Image Rendering Vulnerability (WinS03)
    version 65
refmap via4
bid 18394
cert TA06-164A
cert-vn VU#923236
idefense 20060613 Microsoft Internet Explorer ART File Heap Corruption Vulnerability
ms MS06-022
osvdb 26432
sectrack 1016292
secunia 20605
vupen ADV-2006-2320
xf win-art-image-bo(26809)
Last major update 07-03-2011 - 21:36
Published 13-06-2006 - 15:06
Last modified 12-10-2018 - 17:39
Back to Top