CVE-2006-6627
CVE-2006-6627 is a critical-severity vulnerability in Softwin Bitdefender with a CVSS 2.0 base score of 10.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Critical (CVSS 2.0 base score 10.0)
- EPSS exploit prediction: 7% (94th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Softwin Bitdefender
- Published:
- Last modified:
Description
Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow, aka the "cevakrnl.xmd vulnerability."
Frequently asked questions
- What is CVE-2006-6627?
- Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow, aka the "cevakrnl.xmd vulnerability."
- How severe is CVE-2006-6627?
- CVE-2006-6627 has a CVSS 2.0 base score of 10.0, rated critical severity.
- Is CVE-2006-6627 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 7% (94th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2006-6627?
- CVE-2006-6627 primarily affects Softwin Bitdefender. In total, 9 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2006-6627?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
- When was CVE-2006-6627 published?
- CVE-2006-6627 was published on 2006-12-18 and last updated on 2026-06-16.
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051319.html
- http://secunia.com/advisories/23415
- http://securityreason.com/securityalert/2044
- http://securitytracker.com/id?1017389
- http://www.bitdefender.com/KB323-en--cevakrnl.xmd-vulnerability.html
- http://www.securityfocus.com/archive/1/454501/100/0/threaded
- http://www.securityfocus.com/bid/21610
- http://www.vupen.com/english/advisories/2006/5040
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30904
Affected products (9)
- cpe:2.3:a:softwin:bitdefender:isa_server:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender:ms_exchange_5.5:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender:ms_exchange_2000:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender:ms_exchange_2003:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender_antivirus:*:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender_antivirus:plus:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender_internet_security:*:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender_mail_protection:enterprises:*:*:*:*:*:*:*
- cpe:2.3:a:softwin:bitdefender_online_scanner:*:*:*:*:*:*:*:*
More vulnerabilities in Softwin Bitdefender
- CVE-2005-3154 — High (CVSS 7.5): Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers…
- CVE-2004-1947 — Medium (CVSS 5.0): The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote attackers to (1) obtain…
- CVE-2012-1429 — Medium (CVSS 4.3): The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Secure…