CVE-2006-6753

high

Description

Event Viewer (eventvwr.exe) in Microsoft Windows does not properly display log data that contains '%' (percent) characters, which might make it impossible to use Event Viewer to determine the actual data that triggered an event, and might produce long strings that are not properly handled by certain processes that rely on Event Viewer.

References

http://www.securityfocus.com/archive/1/455087/100/0/threaded

http://www.securityfocus.com/archive/1/455079/100/0/threaded

http://www.securityfocus.com/archive/1/455077/100/0/threaded

http://www.securityfocus.com/archive/1/455071/100/0/threaded

http://www.securityfocus.com/archive/1/455044/100/0/threaded

Details

Source: Mitre, NVD

Published: 2006-12-27

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.1

Vector: CVSS2#AV:A/AC:L/Au:S/C:P/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.00618