CVE-2006-2316

Intel PROset/Wireless < 10.1.0.33 - Unprotected Shared Memory Access

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2316. PoCs published by Ruben Santamarta.

AI-analyzed exploit summary This exploit targets a local information disclosure vulnerability in Intel PROset/Wireless software (CVE-2006-2316) by reading sensitive data (e.g., WEP keys) from an insecure shared memory section. It uses Windows API calls to open and map the shared memory, then scans for potential credentials.

Description

S24EvMon.exe in the Intel PROset/Wireless software, possibly 10.1.0.33, uses a S24EventManagerSharedMemory shared memory section with weak permissions, which allows local users to read or modify passwords or other data, or cause a denial of service.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ruben Santamarta · clocalwindows

https://www.exploit-db.com/exploits/1772

View Code ZIP pw:eip

This exploit targets a local information disclosure vulnerability in Intel PROset/Wireless software (CVE-2006-2316) by reading sensitive data (e.g., WEP keys) from an insecure shared memory section. It uses Windows API calls to open and map the shared memory, then scans for potential credentials.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Intel PROset/Wireless (S24EvMon.exe)

No auth needed

Prerequisites: Local access to the vulnerable system · Intel PROset/Wireless software with S24EvMon.exe running

MITRE ATT&CK