Lucene search

[email protected]CVE-2006-0077

HistoryJan 04, 2006 - 1:03 a.m.

CVE-2006-0077

2006-01-0401:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0077

file::extattr

buffer overflow

security vulnerability

7.9 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

29.1%

JSON

Off-by-one error in the getfattr function in File::ExtAttr before 0.03 allows attackers to trigger a buffer overflow via unspecified attack vectors.

CPENameOperatorVersion
richard_dawe:file_extattrrichard dawe file extattreq0.2
richard_dawe:file_extattrrichard dawe file extattreq0.1

CPE	Name	Operator	Version
richard_dawe:file_extattr	richard dawe file extattr	eq	0.2
richard_dawe:file_extattr	richard dawe file extattr	eq	0.1

References

secunia.com/advisories/18253

sourceforge.net/project/shownotes.php?release_id=382199&group_id=153116

www.osvdb.org/22160

www.securityfocus.com/bid/16118

www.vupen.com/english/advisories/2006/0013

7.9 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

29.1%

JSON

Related for CVE-2006-0077

prion1