CVE-2006-3209
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
24/06/2006
Last modified:
03/04/2025
Description
The Task scheduler (at.exe) on Microsoft Windows XP spawns each scheduled process with SYSTEM permissions, which allows local users to gain privileges. NOTE: this issue has been disputed by third parties, who state that the Task scheduler is limited to the Administrators group by default upon installation
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://securityreason.com/securityalert/1137
- http://www.securityfocus.com/archive/1/436810/100/200/threaded
- http://www.securityfocus.com/archive/1/436884/100/200/threaded
- http://securityreason.com/securityalert/1137
- http://www.securityfocus.com/archive/1/436810/100/200/threaded
- http://www.securityfocus.com/archive/1/436884/100/200/threaded