VAR-200707-0307
Vulnerability from variot - Updated: 2025-04-10 23:09The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90. (A) There are vulnerabilities that are unspecified because they set the bits incorrectly.It may be affected unspecified. Intel Core 2 processors are prone to multiple local denial-of-service vulnerabilities. Attackers can exploit these issues to deny service to legitimate users. Intel CORE 2 is a very popular dual-core processor. Multiple denial of service vulnerabilities exist in CORE 2 processors: If the temperature reaches an invalid temperature, the CPU will not generate a Thermal interrupt even if the set threshold has been exceeded; during the execution of a series of REP store instructions, the store may be Attempts to allocate memory before completing the instruction, resulting in processor lockup and/or system hang; if one logical processor writes to a non-dirty page, another logical processor writes to the same non-dirty page or If the dirty bit is explicitly set in the page table entry of the core, the complex interaction of internal processor behavior can cause unpredictable system behavior and hang; if requesting data from Core 1 causes the L1 cache to be missed, the request will be sent to the L2 cache. If the request encounters a modified line in Core 2's L1 data cache, certain internal requests may cause incorrect data to be returned to Core 1. #PF code may be mishandled if: 1 PDE is modified without validating the relevant TLB entry 2 Code execution diverts to a different code page that satisfies both of the following conditions: * The target linear address is equal to the modified PDE * The PTE of the target linear address contains an explicit A (Accessed) bit 3 One of the following simultaneous exceptions occurs after code diversion: * #DB code and #PF code* Segmentation limit violation #GP code and #PF code software It can be seen that the #PF code is incorrectly processed before the segmentation fault destroys the #GP code, or the #PF code is processed instead of the #DB code
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200707-0307",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "core 2 duo e4000",
"scope": null,
"trust": 1.4,
"vendor": "intel",
"version": null
},
{
"model": "core 2 duo e6000",
"scope": null,
"trust": 1.4,
"vendor": "intel",
"version": null
},
{
"model": "core 2 extreme x6800",
"scope": null,
"trust": 1.4,
"vendor": "intel",
"version": null
},
{
"model": "core 2 duo e6000",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "core 2 extreme x6800",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "core 2 duo e4000",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "core",
"scope": "eq",
"trust": 0.3,
"vendor": "intel",
"version": "20"
}
],
"sources": [
{
"db": "BID",
"id": "24702"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:intel:core_2_duo_e4000",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:intel:core_2_duo_e6000",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:intel:core_2_extreme_x6800",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Theo de Raadt\u203b deraadt@cvs.openbsd.org",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
}
],
"trust": 0.6
},
"cve": "CVE-2006-7215",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 2.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"id": "CVE-2006-7215",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 1.8,
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 2.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"id": "VHN-23323",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.1,
"vectorString": "AV:L/AC:L/AU:N/C:N/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2006-7215",
"trust": 1.0,
"value": "LOW"
},
{
"author": "NVD",
"id": "CVE-2006-7215",
"trust": 0.8,
"value": "Low"
},
{
"author": "CNNVD",
"id": "CNNVD-200707-035",
"trust": 0.6,
"value": "LOW"
},
{
"author": "VULHUB",
"id": "VHN-23323",
"trust": 0.1,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-23323"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The Intel Core 2 Extreme processor X6800 and Core 2 Duo desktop processor E6000 and E4000 incorrectly set the memory page Access (A) bit for a page in certain circumstances involving proximity of the code segment limit to the end of a code page, which has unknown impact and attack vectors on certain operating systems other than OpenBSD, aka AI90. (A) There are vulnerabilities that are unspecified because they set the bits incorrectly.It may be affected unspecified. Intel Core 2 processors are prone to multiple local denial-of-service vulnerabilities. \nAttackers can exploit these issues to deny service to legitimate users. Intel CORE 2 is a very popular dual-core processor. Multiple denial of service vulnerabilities exist in CORE 2 processors: If the temperature reaches an invalid temperature, the CPU will not generate a Thermal interrupt even if the set threshold has been exceeded; during the execution of a series of REP store instructions, the store may be Attempts to allocate memory before completing the instruction, resulting in processor lockup and/or system hang; if one logical processor writes to a non-dirty page, another logical processor writes to the same non-dirty page or If the dirty bit is explicitly set in the page table entry of the core, the complex interaction of internal processor behavior can cause unpredictable system behavior and hang; if requesting data from Core 1 causes the L1 cache to be missed, the request will be sent to the L2 cache. If the request encounters a modified line in Core 2\u0027s L1 data cache, certain internal requests may cause incorrect data to be returned to Core 1. #PF code may be mishandled if: 1 PDE is modified without validating the relevant TLB entry 2 Code execution diverts to a different code page that satisfies both of the following conditions: * The target linear address is equal to the modified PDE * The PTE of the target linear address contains an explicit A (Accessed) bit 3 One of the following simultaneous exceptions occurs after code diversion: * #DB code and #PF code* Segmentation limit violation #GP code and #PF code software It can be seen that the #PF code is incorrectly processed before the segmentation fault destroys the #GP code, or the #PF code is processed instead of the #DB code",
"sources": [
{
"db": "NVD",
"id": "CVE-2006-7215"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"db": "BID",
"id": "24702"
},
{
"db": "VULHUB",
"id": "VHN-23323"
}
],
"trust": 1.98
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2006-7215",
"trust": 2.8
},
{
"db": "BID",
"id": "24702",
"trust": 2.0
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035",
"trust": 0.7
},
{
"db": "MLIST",
"id": "[OPENBSD-MISC] 20070627 INTEL CORE 2",
"trust": 0.6
},
{
"db": "FULLDISC",
"id": "20070628 RE: INTEL CORE 2 CPUS ARE BUGGY. PATCH YOUR CPUS :D",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-23323",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-23323"
},
{
"db": "BID",
"id": "24702"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"id": "VAR-200707-0307",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-23323"
}
],
"trust": 0.01
},
"last_update_date": "2025-04-10T23:09:44.395000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top page",
"trust": 0.8,
"url": "http://www.intel.co.jp/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "http://download.intel.com/design/processor/specupdt/31327914.pdf"
},
{
"trust": 2.0,
"url": "http://www.matasano.com/log/894/theo-de-raadt-intel-core-2-bugs-assuredly-exploitable-from-userland/"
},
{
"trust": 1.9,
"url": "http://marc.info/?l=openbsd-misc\u0026m=118296441702631\u0026w=2"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/24702"
},
{
"trust": 1.7,
"url": "http://seclists.org/fulldisclosure/2007/jun/0605.html"
},
{
"trust": 1.1,
"url": "http://www.geek.com/images/geeknews/2006jan/core_duo_errata__2006_01_21__full.gif"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-7215"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-7215"
},
{
"trust": 0.3,
"url": "http://www.intel.com/"
},
{
"trust": 0.1,
"url": "http://marc.info/?l=openbsd-misc\u0026amp;m=118296441702631\u0026amp;w=2"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-23323"
},
{
"db": "BID",
"id": "24702"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-23323"
},
{
"db": "BID",
"id": "24702"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2007-07-03T00:00:00",
"db": "VULHUB",
"id": "VHN-23323"
},
{
"date": "2007-06-28T00:00:00",
"db": "BID",
"id": "24702"
},
{
"date": "2012-09-25T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"date": "2007-06-28T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"date": "2007-07-03T21:30:00",
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2008-09-05T00:00:00",
"db": "VULHUB",
"id": "VHN-23323"
},
{
"date": "2015-05-07T17:37:00",
"db": "BID",
"id": "24702"
},
{
"date": "2012-09-25T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-003163"
},
{
"date": "2007-07-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200707-035"
},
{
"date": "2025-04-09T00:30:58.490000",
"db": "NVD",
"id": "CVE-2006-7215"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "BID",
"id": "24702"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
}
],
"trust": 0.9
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Intel Core 2 Extreme Processor X6800 Vulnerability in",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-003163"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Design Error",
"sources": [
{
"db": "BID",
"id": "24702"
},
{
"db": "CNNVD",
"id": "CNNVD-200707-035"
}
],
"trust": 0.9
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…