CVE-2006-0043

2006-01-3102:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0043

buffer overflow

nfs-server

rpc.mountd

suse linux

arbitrary code

mount requests

symlinks

7.4 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

9.3%

JSON

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks.

CPENameOperatorVersion
suse:suse_linuxsuse suse linuxeq9.1
suse:suse_linuxsuse suse linuxeq9.3
suse:suse_linuxsuse suse linuxeq9.2
suse:suse_linuxsuse suse linuxeq10.0
suse:suse_linuxsuse suse linuxeq1.0

CPE	Name	Operator	Version
suse:suse_linux	suse suse linux	eq	9.1
suse:suse_linux	suse suse linux	eq	9.3
suse:suse_linux	suse suse linux	eq	9.2
suse:suse_linux	suse suse linux	eq	10.0
suse:suse_linux	suse suse linux	eq	1.0