CVE-2006-6579

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP version

Description The issue is related to weak permissions for the %WINDIR%pchealthERRORREPQHEADLES folder, which allows local users to write and read files in this folder. This is demonstrated by an ASP shell that has write access by IWAM machine and read access by IUSR Machine.

Recommendations For Microsoft Windows XP, consider restricting access to the %WINDIR%pchealthERRORREPQHEADLES folder to prevent local users from writing and reading files. As a temporary workaround, consider disabling write access to the %WINDIR%pchealthERRORREPQHEADLES folder for the IWAM machine user and read access for the IUSR Machine user until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.