CVE		CVE-2006-6797
Статус		Candidate
Описание		The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.
Важность		Medium
CVSS score		4,7
CVSS vector		(AV:L/AC:L/Au:NR/C:C/I:N/A:C/B:N)
Phase		Assigned (28.12.2006)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6797
References		BUGTRAQ : 20061227 NtRaiseHardError Csrss.exe memory Disclosure exploit
		CERT-VN : VU#740636
		CERT : TA07-100A
		FRSIRT : ADV-2006-5197
		FRSIRT : ADV-2007-1325
		HP : HPSBST02208
		HP : SSRT071365
		MISC : http://www.reversemode.com/index.php?option=com_co...
		MISC : http://www.reversemode.com/index.php?option=com_re...
		MS : MS07-021
		SECTRACK : 1017454
		SECUNIA : 23491
		XF : win-ntraiseharderror-information-disclosure(31176)
SecurityVulns:		Повреждение памяти в Microsoft Windows (memory corruption)