Vulnerability Description
The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibly obtain sensitive information, as demonstrated by dumper.asm.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows 2003 Server | r2 |
| Microsoft | Windows Xp | All versions |
References
- http://www.securityfocus.com/archive/1/423169/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24471
- http://www.securityfocus.com/archive/1/423169/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24471
FAQ
What is CVE-2006-0488?
CVE-2006-0488 is a vulnerability with a CVSS score of 2.1 (LOW). The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibl...
How severe is CVE-2006-0488?
CVE-2006-0488 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0488?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows 2003 Server, Microsoft Windows Xp.