CVE-2006-4704 - OpenCVE

Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) ActiveX control (WmiScriptUtils.dll) in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka "WMI Object Broker Vulnerability."

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Microsoft	Visual Studio .net

Configuration 1 [-]

cpe:2.3:a:microsoft:visual_studio_.net:2005:*:*:*:*:*:*:*

References

Link	Resource
http://blogs.technet.com/msrc/archive/2006/11/01/microsoft-security-advisory-927709-posted.aspx
http://research.eeye.com/html/alerts/zeroday/20061031.html
http://secunia.com/advisories/22603	Vendor Advisory
http://securitytracker.com/id?1017142
http://www.kb.cert.org/vuls/id/854856	US Government Resource
http://www.microsoft.com/technet/security/advisory/927709.mspx	Vendor Advisory
http://www.securityfocus.com/archive/1/454201/100/0/threaded
http://www.securityfocus.com/archive/1/454969/100/200/threaded
http://www.securityfocus.com/bid/20797
http://www.securityfocus.com/bid/20843	Exploit
http://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf
http://www.us-cert.gov/cas/techalerts/TA06-346A.html	US Government Resource
http://www.vupen.com/english/advisories/2006/4282	Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-06-047.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-073
https://exchange.xforce.ibmcloud.com/vulnerabilities/29915
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A288

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: microsoft

Published: 2006-11-01T15:00:00

Updated: 2018-10-17T20:57:01

Reserved: 2006-09-11T00:00:00

Link: CVE-2006-4704

JSON object: View

NVD Information

Status : Modified

Published: 2006-11-01T15:07:00.000

Modified: 2018-10-17T21:39:13.653

Link: CVE-2006-4704

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-11-01T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) ActiveX control (WmiScriptUtils.dll) in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka \"WMI Object Broker Vulnerability.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft"}, "references": [{"name": "20843", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20843"}, {"name": "20061212 ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/454201/100/0/threaded"}, {"tags": ["x_refsource_MISC"], "url": "http://research.eeye.com/html/alerts/zeroday/20061031.html"}, {"name": "MS06-073", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-073"}, {"name": "927709", "tags": ["vendor-advisory", "x_refsource_MSKB"], "url": "http://www.microsoft.com/technet/security/advisory/927709.mspx"}, {"name": "20797", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20797"}, {"name": "TA06-346A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-346A.html"}, {"name": "22603", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22603"}, {"name": "ADV-2006-4282", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/4282"}, {"name": "oval:org.mitre.oval:def:288", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A288"}, {"name": "SSRT061288", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.securityfocus.com/archive/1/454969/100/200/threaded"}, {"name": "1017142", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017142"}, {"name": "HPSBST02180", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.securityfocus.com/archive/1/454969/100/200/threaded"}, {"name": "VU#854856", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/854856"}, {"tags": ["x_refsource_MISC"], "url": "http://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-047.html"}, {"name": "ie-wscriptshell-command-execution(29915)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29915"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://blogs.technet.com/msrc/archive/2006/11/01/microsoft-security-advisory-927709-posted.aspx"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secure@microsoft.com", "ID": "CVE-2006-4704", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) ActiveX control (WmiScriptUtils.dll) in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka \"WMI Object Broker Vulnerability.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20843", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20843"}, {"name": "20061212 ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/454201/100/0/threaded"}, {"name": "http://research.eeye.com/html/alerts/zeroday/20061031.html", "refsource": "MISC", "url": "http://research.eeye.com/html/alerts/zeroday/20061031.html"}, {"name": "MS06-073", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-073"}, {"name": "927709", "refsource": "MSKB", "url": "http://www.microsoft.com/technet/security/advisory/927709.mspx"}, {"name": "20797", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20797"}, {"name": "TA06-346A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA06-346A.html"}, {"name": "22603", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22603"}, {"name": "ADV-2006-4282", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/4282"}, {"name": "oval:org.mitre.oval:def:288", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A288"}, {"name": "SSRT061288", "refsource": "HP", "url": "http://www.securityfocus.com/archive/1/454969/100/200/threaded"}, {"name": "1017142", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017142"}, {"name": "HPSBST02180", "refsource": "HP", "url": "http://www.securityfocus.com/archive/1/454969/100/200/threaded"}, {"name": "VU#854856", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/854856"}, {"name": "http://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf", "refsource": "MISC", "url": "http://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-06-047.html", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-047.html"}, {"name": "ie-wscriptshell-command-execution(29915)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29915"}, {"name": "http://blogs.technet.com/msrc/archive/2006/11/01/microsoft-security-advisory-927709-posted.aspx", "refsource": "CONFIRM", "url": "http://blogs.technet.com/msrc/archive/2006/11/01/microsoft-security-advisory-927709-posted.aspx"}]}}}}, "cveMetadata": {"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "assignerShortName": "microsoft", "cveId": "CVE-2006-4704", "datePublished": "2006-11-01T15:00:00", "dateReserved": "2006-09-11T00:00:00", "dateUpdated": "2018-10-17T20:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:visual_studio_.net:2005:*:*:*:*:*:*:*", "matchCriteriaId": "EBED7535-0091-4B27-B261-384CEADFE362", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) ActiveX control (WmiScriptUtils.dll) in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka \"WMI Object Broker Vulnerability.\""}, {"lang": "es", "value": "Vulnerabilidad de secuencias de comandos en zonas cruzadas en el Control ActiveX (WmiScriptUtils.dll) del WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) en el Microsoft Visual Studio 2005 permite atacantes remotos evitar las restricciones de la zona de Internet y ejecutar c\u00f3digo de su elecci\u00f3n instanciando objetos peligrosos, tambi\u00e9n conocido como \"Vulnerabilidad WMI Object Broker\"."}], "id": "CVE-2006-4704", "lastModified": "2018-10-17T21:39:13.653", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2006-11-01T15:07:00.000", "references": [{"source": "secure@microsoft.com", "url": "http://blogs.technet.com/msrc/archive/2006/11/01/microsoft-security-advisory-927709-posted.aspx"}, {"source": "secure@microsoft.com", "url": "http://research.eeye.com/html/alerts/zeroday/20061031.html"}, {"source": "secure@microsoft.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22603"}, {"source": "secure@microsoft.com", "url": "http://securitytracker.com/id?1017142"}, {"source": "secure@microsoft.com", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/854856"}, {"source": "secure@microsoft.com", "tags": ["Vendor Advisory"], "url": "http://www.microsoft.com/technet/security/advisory/927709.mspx"}, {"source": "secure@microsoft.com", "url": "http://www.securityfocus.com/archive/1/454201/100/0/threaded"}, {"source": "secure@microsoft.com", "url": "http://www.securityfocus.com/archive/1/454969/100/200/threaded"}, {"source": "secure@microsoft.com", "url": "http://www.securityfocus.com/bid/20797"}, {"source": "secure@microsoft.com", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/20843"}, {"source": "secure@microsoft.com", "url": "http://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf"}, {"source": "secure@microsoft.com", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-346A.html"}, {"source": "secure@microsoft.com", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/4282"}, {"source": "secure@microsoft.com", "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-047.html"}, {"source": "secure@microsoft.com", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-073"}, {"source": "secure@microsoft.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29915"}, {"source": "secure@microsoft.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A288"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}