CVE-2006-4704

NONECVSS 0.0

0.0

Cross-zone scripting vulnerability in the WMI Object Broker (WMIScriptUtils.WMIObjectBroker2) ActiveX control (WmiScriptUtils.dll) in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka "WMI Object Broker Vulnerability."

🔗 References (34)

secure@microsofthttp://blogs.technet.com/msrc/archive/2006/11/01/microsoft-security-advisory-927709-posted.aspx
secure@microsofthttp://research.eeye.com/html/alerts/zeroday/20061031.html
secure@microsofthttp://secunia.com/advisories/22603
secure@microsofthttp://securitytracker.com/id?1017142
secure@microsofthttp://www.kb.cert.org/vuls/id/854856
secure@microsofthttp://www.microsoft.com/technet/security/advisory/927709.mspx
secure@microsofthttp://www.securityfocus.com/archive/1/454201/100/0/threaded
secure@microsofthttp://www.securityfocus.com/archive/1/454969/100/200/threaded
secure@microsofthttp://www.securityfocus.com/bid/20797
secure@microsofthttp://www.securityfocus.com/bid/20843
secure@microsofthttp://www.securityfocus.com/data/vulnerabilities/exploits/0day_ie.pdf
secure@microsofthttp://www.us-cert.gov/cas/techalerts/TA06-346A.html
secure@microsofthttp://www.vupen.com/english/advisories/2006/4282
secure@microsofthttp://www.zerodayinitiative.com/advisories/ZDI-06-047.html
secure@microsofthttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-073

Is Your Infrastructure Affected by CVE-2006-4704?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-4704

📅 Published

🔄 Last Modified

🔗 References (34)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-4704?