Unrated severityNVD Advisory· Published Apr 4, 2007· Updated Jun 16, 2026
CVE-2006-5586
CVE-2006-5586
Description
The Graphics Rendering Engine in Microsoft Windows 2000 SP4 and XP SP2 allows local users to gain privileges via "invalid application window sizes" in layered application windows, aka the "GDI Invalid Window Size Elevation of Privilege Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
- (no CPE)range: = SP4
cpe:2.3:o:microsoft:windows_xp:*:gold:professional_x64:*:*:*:*:*+ 3 more
- cpe:2.3:o:microsoft:windows_xp:*:gold:professional_x64:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:professional_x64:*:*:*:*:*
- (no CPE)range: = SP2
Patches
Vulnerability mechanics
References
6- www.securityfocus.com/archive/1/466186/100/200/threadednvd
- www.securityfocus.com/bid/23277nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/1215nvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-017nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1385nvd
News mentions
0No linked articles in our index yet.