CVE-2006-3648

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4, XP SP1, XP SP2, Server 2003, Server 2003 SP1

Description The issue allows remote attackers to execute arbitrary code via unspecified vectors involving unhandled exceptions, memory resident applications, and incorrectly "unloading chained exception." It is related to the way exception handling is managed on multiple applications that are resident in memory.

Recommendations For Microsoft Windows 2000 SP4, consider applying a patch or fix as soon as it becomes available to address the issue with exception handling. For Microsoft Windows XP SP1 and SP2, apply a patch or fix as soon as it becomes available to resolve the problem with unhandled exceptions in memory resident applications. For Microsoft Windows Server 2003 and 2003 SP1, apply a patch or fix as soon as it becomes available to fix the issue with exception handling in memory resident applications. At the moment, there is no information about a newer version that contains a fix for this vulnerability.