CVE-2006-6952

EPSS 0.31% · P54 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-6952

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

CA多个产品驱动本地权限提升漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Computer Associates是世界领先的安全厂商，产品包括多种杀毒软件及备份恢复系统。 CA HIPS产品的驱动在实现上存在问题，本地攻击者可能利用此漏洞提升权限。CA的HIPS Core(KmxStart.sys)和HIPS Firewall(KmxFw.sys)驱动hook了TDI和NDIS。本地非特权用户可以使用一些特权IOCTL覆盖这些驱动中的函数指针，以Ring0权限执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-6952

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-6952

请登录查看更多情报信息。

http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818x_refsource_CONFIRM
http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=38x_refsource_MISC
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729x_refsource_CONFIRM
http://secunia.com/advisories/22972third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/30498vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/21140vdb-entryx_refsource_BID
http://www.securityfocus.com/archive/1/458040/100/200/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/451952/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/452286/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-6952

Same Patch Batch · n/a · 2007-01-24 · 13 CVEs total

CVE-2007-0444		Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲区溢出漏洞
CVE-2007-0018		NCTsoft NCTAudioFile2 ActiveX控件远程栈溢出漏洞
CVE-2007-0010		GTK2 GdkPixbufLoader函数远程拒绝服务漏洞
CVE-2005-4824		Siteframe web/classes.php PHP远程文件包含漏洞
CVE-2007-0020		Transmit "sftp://" URI处理器堆溢出漏洞
CVE-2007-0023		Apple UserNotificationCenter本地权限提升漏洞
CVE-2007-0460		SUSE Linux Ulogd 多个缓冲区溢出漏洞
CVE-2007-0461		Dazuko anti-virus helper模块拒绝服务攻击漏洞
CVE-2007-0468		Microsoft Visual Studio C++ (.RC) 'rcdll.dll' 栈缓存溢出漏洞
CVE-2007-0469		RubyGems 'installer.rb' extract_files函数拒绝服务攻击漏洞
CVE-2007-0470		Sun Solaris tip工具本地权限提升漏洞
CVE-2007-0471		CheckPoint Connectra端点绕过安全检测漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-6952

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-6952

I. Basic Information for CVE-2006-6952

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-6952

III. Intelligence Information for CVE-2006-6952

Same Patch Batch · n/a · 2007-01-24 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-6952

Leave a comment