NVD Vulnerability Detail

CVE-2006-0003

Summary	Unspecified vulnerability in the RDS.Dataspace ActiveX control, which is contained in ActiveX Data Objects (ADO) and distributed in Microsoft Data Access Components (MDAC) 2.7 and 2.8, allows remote attackers to execute arbitrary code via unknown attack vectors.
Publication Date	April 12, 2006, 9:02 a.m.
Registration Date	Jan. 29, 2021, 3:29 p.m.
Last Update	Oct. 20, 2018, 12:41 a.m.

CVSS2.0 : MEDIUM
Score	5.1
Vector	AV:N/AC:H/Au:N/C:P/I:P/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	高
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	低
可用性への影響(A)	低
Get all privileges.	いいえ
Get user privileges	はい
Get other privileges	いいえ
User operation required	はい

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:microsoft:data_access_components:2.5:sp3::::::
cpe:2.3:a:microsoft:data_access_components:2.7:::::::*
cpe:2.3:a:microsoft:data_access_components:2.7:sp1::::::
cpe:2.3:a:microsoft:data_access_components:2.8:::::::*
cpe:2.3:a:microsoft:data_access_components:2.8:sp1::::::
cpe:2.3:a:microsoft:data_access_components:2.8:sp2::::::

Related information, measures and tools

No	URL	refsource	タグ
1	http://secunia.com/advisories/19583	SECUNIA	Vendor Advisory
2	http://secunia.com/advisories/20719	SECUNIA
3	http://securitytracker.com/id?1015894	SECTRACK
4	http://www.hitachi-support.com/security_e/vuls_e/HS06-013_e/01-e.html	CONFIRM
5	http://www.hitachi-support.com/security_e/vuls_e/HS06-013_e/index-e.html	CONFIRM
6	http://www.kb.cert.org/vuls/id/234812	CERT-VN	Third Party Advisory US Government Resource
7	http://www.osvdb.org/24517	OSVDB
8	http://www.securityfocus.com/archive/1/475104/100/100/threaded	BUGTRAQ
9	http://www.securityfocus.com/archive/1/475108/100/100/threaded	BUGTRAQ
10	http://www.securityfocus.com/archive/1/475118/100/100/threaded	BUGTRAQ
11	http://www.securityfocus.com/archive/1/475490/100/100/threaded	BUGTRAQ
12	http://www.securityfocus.com/archive/1/487216/100/200/threaded	BUGTRAQ
13	http://www.securityfocus.com/archive/1/487219/100/200/threaded	BUGTRAQ
14	http://www.securityfocus.com/bid/17462	BID
15	http://www.securityfocus.com/bid/20797	BID
16	http://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf	MISC
17	http://www.us-cert.gov/cas/techalerts/TA06-101A.html	CERT	Third Party Advisory US Government Resource
18	http://www.vupen.com/english/advisories/2006/1319	VUPEN
19	http://www.vupen.com/english/advisories/2006/2452	VUPEN
20	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-014	MS
21	https://exchange.xforce.ibmcloud.com/vulnerabilities/25006	XF
22	https://exchange.xforce.ibmcloud.com/vulnerabilities/29915	XF
23	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1204	OVAL
24	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1323	OVAL
25	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1511	OVAL
26	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1742	OVAL
27	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1778	OVAL
28	https://www.exploit-db.com/exploits/2052	EXPLOIT-DB
29	https://www.exploit-db.com/exploits/2164	EXPLOIT-DB

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:microsoft:data_access_components:2.5:sp3::::::
cpe:2.3:a:microsoft:data_access_components:2.7:::::::*
cpe:2.3:a:microsoft:data_access_components:2.7:sp1::::::
cpe:2.3:a:microsoft:data_access_components:2.8:::::::*
cpe:2.3:a:microsoft:data_access_components:2.8:sp1::::::
cpe:2.3:a:microsoft:data_access_components:2.8:sp2::::::