CVE-2006-7215 - Vulnerability Details - OpenCVE

The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Intel	Core 2 Duo E4000 Core 2 Duo E6000 Core 2 Extreme X6800

Configuration 1 [-]

OR	cpe:2.3:h:intel:core_2_duo_e4000::::::::
	cpe:2.3:h:intel:core_2_duo_e6000::::::::
	cpe:2.3:h:intel:core_2_extreme_x6800::::::::

No data.

References

Link	Providers
http://download.intel.com/design/processor/specupdt/31327914.pdf
http://marc.info/?l=openbsd-misc&m=118296441702631&w=2
http://seclists.org/fulldisclosure/2007/Jun/0605.html
http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif
http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/
http://www.securityfocus.com/bid/24702

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-07-03T21:00:00Z

Updated: 2024-09-17T00:41:57.262Z

Reserved: 2007-07-03T00:00:00Z

Link: CVE-2006-7215

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-07-03T21:30:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2006-7215

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-07-03T21:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[openbsd-misc] 20070627 Intel Core 2", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://marc.info/?l=openbsd-misc&m=118296441702631&w=2"}, {"name": "24702", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/24702"}, {"tags": ["x_refsource_MISC"], "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"}, {"tags": ["x_refsource_MISC"], "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"}, {"name": "20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-7215", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[openbsd-misc] 20070627 Intel Core 2", "refsource": "MLIST", "url": "http://marc.info/?l=openbsd-misc&m=118296441702631&w=2"}, {"name": "24702", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24702"}, {"name": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif", "refsource": "MISC", "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"}, {"name": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/", "refsource": "MISC", "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"}, {"name": "http://download.intel.com/design/processor/specupdt/31327914.pdf", "refsource": "CONFIRM", "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"}, {"name": "20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T20:57:40.975Z"}, "title": "CVE Program Container", "references": [{"name": "[openbsd-misc] 20070627 Intel Core 2", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://marc.info/?l=openbsd-misc&m=118296441702631&w=2"}, {"name": "24702", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/24702"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"}, {"name": "20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-7215", "datePublished": "2007-07-03T21:00:00Z", "dateReserved": "2007-07-03T00:00:00Z", "dateUpdated": "2024-09-17T00:41:57.262Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:intel:core_2_duo_e4000:*:*:*:*:*:*:*:*", "matchCriteriaId": "34F7672A-3CAF-46EB-B05D-A4AF58D4EE12", "vulnerable": true}, {"criteria": "cpe:2.3:h:intel:core_2_duo_e6000:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A87047F-6E66-46DD-B9EE-15EE13ADE359", "vulnerable": true}, {"criteria": "cpe:2.3:h:intel:core_2_extreme_x6800:*:*:*:*:*:*:*:*", "matchCriteriaId": "1BFFC34B-4182-40E7-A40E-0DB23A3ADA3A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90."}, {"lang": "es", "value": "El procesador Intel Core 2 Extreme X6800 y Core 2 Duo desktop E6000 y E4000 establecen incorrectamente el bit de Acceso (A) a p\u00e1gina de memoria para una p\u00e1gina bajo ciertas circunstancias que implican la proximidad del l\u00edmite de segmento de c\u00f3digo con el final de una p\u00e1gina de c\u00f3digo, lo cual tiene impacto y vectores desconocidos en ciertos sistemas operativos que no son OpenBSD, tambi\u00e9n conocido como AI90."}], "id": "CVE-2006-7215", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-07-03T21:30:00.000", "references": [{"source": "cve@mitre.org", "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=openbsd-misc&m=118296441702631&w=2"}, {"source": "cve@mitre.org", "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"}, {"source": "cve@mitre.org", "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"}, {"source": "cve@mitre.org", "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/24702"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=openbsd-misc&m=118296441702631&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/24702"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}