VYPR
Unrated severityNVD Advisory· Published Dec 15, 2006· Updated Jun 16, 2026

CVE-2006-6579

CVE-2006-6579

Description

Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.

Affected products

7
  • cpe:2.3:a:microsoft:internet_information_server:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:microsoft:internet_information_server:*:*:*:*:*:*:*:*range: <=5.0
    • cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_information_server:4.0:alpha:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_information_services:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_information_services:2.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.