Sign-up

ID

VAR-200605-0169


CVE

CVE-2006-2316


TITLE

Intel PROset/Wireless S24EvMon.exe Local information disclosure vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200605-221

DESCRIPTION

S24EvMon.exe in the Intel PROset/Wireless software, possibly 10.1.0.33, uses a S24EventManagerSharedMemory shared memory section with weak permissions, which allows local users to read or modify passwords or other data, or cause a denial of service. Intel PROset/Wireless software is susceptible to a local information-disclosure vulnerability. This issue is due to insecure permissions being applied to shared-memory segments. This issue allows local, unprivileged attackers to gain access to potentially sensitive network configuration and authentication information. Information gathered by exploiting this issue will aid them in further attacks. Version 10.1.0.33 of the Intel PROset/Wireless software is vulnerable to this issue; other versions may also be affected. The vulnerability is caused due to insecure default permissions on the "\BaseNamedObjects\S24EventManagerSharedMemory" shared section used by the Wireless Management Service (S24EvMon.exe). This makes it possible for an unprivileged user to obtain information of the wireless configuration e.g. WEP keys. The vulnerability has been confirmed in version 10.1.0.33. SOLUTION: Restrict access to affected systems. PROVIDED AND/OR DISCOVERED BY: Rub\xe9n Santamarta ORIGINAL ADVISORY: http://www.reversemode.com/index.php?option=com_content&task=view&id=10&Itemid=1 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.35

sources: NVD: CVE-2006-2316 // BID: 17914 // VULHUB: VHN-18424 // PACKETSTORM: 46183

AFFECTED PRODUCTS

vendor:intelmodel:proset wirelessscope:lteversion:10.1.0.33

Trust: 1.0

vendor:intelmodel:proset wirelessscope:eqversion:10.1.0.33

Trust: 0.6

vendor:intelmodel:proset/wirelessscope:eqversion:10.1.33

Trust: 0.3

sources: BID: 17914 // CNNVD: CNNVD-200605-221 // NVD: CVE-2006-2316

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2006-2316
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200605-221
value: MEDIUM

Trust: 0.6

VULHUB: VHN-18424
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2006-2316
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:C/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-18424
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:C/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-18424 // CNNVD: CNNVD-200605-221 // NVD: CVE-2006-2316

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-2316

THREAT TYPE

local

Trust: 1.0

sources: BID: 17914 // PACKETSTORM: 46183 // CNNVD: CNNVD-200605-221

TYPE

access verification error

Trust: 0.6

sources: CNNVD: CNNVD-200605-221

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-18424

EXTERNAL IDS
db:BIDid:17914
Trust: 2.0
db:SECUNIAid:20001
Trust: 1.8
db:SECTRACKid:1016621
Trust: 1.7
db:VUPENid:ADV-2006-1737
Trust: 1.7
db:NVDid:CVE-2006-2316
Trust: 1.7
db:SREASONid:877
Trust: 1.7
db:CNNVDid:CNNVD-200605-221
Trust: 0.7
db:XFid:26317
Trust: 0.6
db:XFid:24
Trust: 0.6
db:BUGTRAQid:20060502 INTEL WIRELESS SERVICE S24EVMON.EXE CONFIDENTIAL INFORMATION DISCLOSURE.
Trust: 0.6
db:EXPLOIT-DBid:1772
Trust: 0.1
db:VULHUBid:VHN-18424
Trust: 0.1
db:PACKETSTORMid:46183
Trust: 0.1
sources:
            
            
            VULHUB: VHN-18424 // 
            
            
            
            BID: 17914 // 
            
            
            
            PACKETSTORM: 46183 // 
            
            
            
            CNNVD: CNNVD-200605-221 // 
            
            
            
            NVD: CVE-2006-2316

REFERENCES
url:http://www.reversemode.com/index.php?option=com_content&task=view&id=10&itemid=1
Trust: 2.0
url:http://www.securityfocus.com/bid/17914
Trust: 1.7
url:http://securitytracker.com/id?1016621
Trust: 1.7
url:http://secunia.com/advisories/20001
Trust: 1.7
url:http://securityreason.com/securityalert/877
Trust: 1.7
url:http://www.securityfocus.com/archive/1/433133/100/0/threaded
Trust: 1.1
url:http://www.vupen.com/english/advisories/2006/1737
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/26317
Trust: 1.1
url:http://www.securityfocus.com/archive/1/archive/1/433133/100/0/threaded
Trust: 0.6
url:http://www.frsirt.com/english/advisories/2006/1737
Trust: 0.6
url:http://xforce.iss.net/xforce/xfdb/26317
Trust: 0.6
url:http://www.intel.com/network/connectivity/products/wireless/proset/proset_software.htm
Trust: 0.3
url:http://www.reversemode.com/index.php?option=com_content&task=view&id=10&itemid=1
Trust: 0.1
url:http://secunia.com/product/9821/
Trust: 0.1
url:http://secunia.com/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/product/7495/
Trust: 0.1
url:http://secunia.com/advisories/20001/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            VULHUB: VHN-18424 // 
            
            
            
            BID: 17914 // 
            
            
            
            PACKETSTORM: 46183 // 
            
            
            
            CNNVD: CNNVD-200605-221 // 
            
            
            
            NVD: CVE-2006-2316

CREDITS
Rubn Santamarta discovered this vulnerability.
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200605-221

SOURCES
db:VULHUBid:VHN-18424
db:BIDid:17914
db:PACKETSTORMid:46183
db:CNNVDid:CNNVD-200605-221
db:NVDid:CVE-2006-2316

LAST UPDATE DATE
2024-08-14T14:00:14.304000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-18424date:2018-10-18T00:00:00
db:BIDid:17914date:2006-05-10T17:49:00
db:CNNVDid:CNNVD-200605-221date:2006-05-12T00:00:00
db:NVDid:CVE-2006-2316date:2018-10-18T16:39:14.443

SOURCES RELEASE DATE
db:VULHUBid:VHN-18424date:2006-05-12T00:00:00
db:BIDid:17914date:2006-05-09T00:00:00
db:PACKETSTORMid:46183date:2006-05-09T19:56:56
db:CNNVDid:CNNVD-200605-221date:2006-05-11T00:00:00
db:NVDid:CVE-2006-2316date:2006-05-12T00:02:00