CVE-2006-7215 (GCVE-0-2006-7215)

Vulnerability from cvelistv5 – Published: 2007-07-03 21:00 – Updated: 2024-09-17 00:41
VLAI
Summary
The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90.
Severity
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T20:57:40.975Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[openbsd-misc] 20070627 Intel Core 2",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=openbsd-misc\u0026m=118296441702631\u0026w=2"
          },
          {
            "name": "24702",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/24702"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"
          },
          {
            "name": "20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2007-07-03T21:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "[openbsd-misc] 20070627 Intel Core 2",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://marc.info/?l=openbsd-misc\u0026m=118296441702631\u0026w=2"
        },
        {
          "name": "24702",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/24702"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"
        },
        {
          "name": "20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-7215",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[openbsd-misc] 20070627 Intel Core 2",
              "refsource": "MLIST",
              "url": "http://marc.info/?l=openbsd-misc\u0026m=118296441702631\u0026w=2"
            },
            {
              "name": "24702",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/24702"
            },
            {
              "name": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif",
              "refsource": "MISC",
              "url": "http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif"
            },
            {
              "name": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/",
              "refsource": "MISC",
              "url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"
            },
            {
              "name": "http://download.intel.com/design/processor/specupdt/31327914.pdf",
              "refsource": "CONFIRM",
              "url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"
            },
            {
              "name": "20070628 Re: Intel Core 2 CPUs are buggy. Patch your cpus :D",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2007/Jun/0605.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-7215",
    "datePublished": "2007-07-03T21:00:00.000Z",
    "dateReserved": "2007-07-03T00:00:00.000Z",
    "dateUpdated": "2024-09-17T00:41:57.262Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2006-7215",
      "date": "2026-06-18",
      "epss": "0.00344",
      "percentile": "0.26101"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-7215\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-07-03T21:30:00.000\",\"lastModified\":\"2026-04-23T00:35:47.467\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90.\"},{\"lang\":\"es\",\"value\":\"El procesador Intel Core 2 Extreme X6800 y Core 2 Duo desktop E6000 y E4000 establecen incorrectamente el bit de Acceso (A) a p\u00e1gina de memoria para una p\u00e1gina bajo ciertas circunstancias que implican la proximidad del l\u00edmite de segmento de c\u00f3digo con el final de una p\u00e1gina de c\u00f3digo, lo cual tiene impacto y vectores desconocidos en ciertos sistemas operativos que no son OpenBSD, tambi\u00e9n conocido como AI90.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_2_duo_e4000:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34F7672A-3CAF-46EB-B05D-A4AF58D4EE12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_2_duo_e6000:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A87047F-6E66-46DD-B9EE-15EE13ADE359\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_2_extreme_x6800:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BFFC34B-4182-40E7-A40E-0DB23A3ADA3A\"}]}]}],\"references\":[{\"url\":\"http://download.intel.com/design/processor/specupdt/31327914.pdf\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=openbsd-misc\u0026m=118296441702631\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://seclists.org/fulldisclosure/2007/Jun/0605.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/24702\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://download.intel.com/design/processor/specupdt/31327914.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=openbsd-misc\u0026m=118296441702631\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2007/Jun/0605.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/24702\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.





Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.


Detection rules are retrieved from Rulezet.