CVE-2006-0012

Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "Windows Shell Vulnerability."

Published: Apr 12, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-0012
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_xp	-	-
microsoft / windows_2003_server	web	web.x
microsoft / windows_2003_server	enterprise	enterprise.x
microsoft / windows_2003_server	enterprise_64-bit	enterprise_64-bit.x
microsoft / windows_2000	-	-
microsoft / windows_2003_server	standard_64-bit	standard_64-bit.x
microsoft / windows_2003_server	datacenter_64-bit-sp1	datacenter_64-bit-sp1.x
microsoft / windows_98se	-	-
microsoft / windows_2003_server	r2-sp1	r2-sp1.x
microsoft / windows_2003_server	enterprise_64-bit-sp1	enterprise_64-bit-sp1.x
microsoft / windows_2003_server	r2	r2.x
microsoft / windows_2003_server	web-sp1	web-sp1.x
microsoft / windows_2003_server	standard-sp1	standard-sp1.x
microsoft / windows_me	-	-
microsoft / windows_2003_server	enterprise-sp1	enterprise-sp1.x
microsoft / windows_2003_server	standard	standard.x
microsoft / windows_98	-	-

Vulnerability Database

289,599

CVE-2006-0012