CVE-2006-7215 - The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectl

CVE-2006-7215

Summary

The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90.

References

Vulnerable Configurations

cpe:2.3:h:intel:core_2_duo_e4000:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_2_duo_e4000:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_2_duo_e6000:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_2_duo_e6000:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_2_extreme_x6800:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_2_extreme_x6800:*:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 05-09-2008 - 21:16)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	24702
confirm	http://download.intel.com/design/processor/specupdt/31327914.pdf
fulldisc	20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D
misc	http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/
mlist	[openbsd-misc] 20070627 Intel Core 2

Last major update

05-09-2008 - 21:16

Published

03-07-2007 - 21:30

Last modified

05-09-2008 - 21:16