CVE-2006-0376

critical

Description

The 802.11 wireless client in certain operating systems including Windows 2000, Windows XP, and Windows Server 2003 does not warn the user when (1) it establishes an association with a station in ad hoc (aka peer-to-peer) mode or (2) a station in ad hoc mode establishes an association with it, which allows remote attackers to put unexpected wireless communication into place.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24157

http://www.theta44.org/karma/

http://www.securityfocus.com/archive/1/421868/100/0/threaded

http://www.securiteam.com/windowsntfocus/5YP0D2KHHO.html

http://www.nmrc.org/pub/advise/20060114.txt

http://securitytracker.com/id?1015489

http://securityreason.com/securityalert/349

Details

Source: Mitre, NVD

Published: 2006-01-22

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical

EPSS

EPSS: 0.29308