CVE-2006-6797

Name of the Vulnerable Software and Affected Versions: Microsoft Windows (affected versions not specified)

Description: A denial of service issue exists due to the way the Client Server Run-Time Subsystem (CSRSS) handles error messages, allowing local users to cause a system crash or read arbitrary memory from csrss.exe by providing crafted arguments to the NtRaiseHardError function with status 0x50000018. An attacker could exploit this by running a specially crafted application, causing the system to restart.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.