CVE-2006-0224
7.2 High
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
27.4%
Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument (alternative configuration file name).
| CPE | Name | Operator | Version |
|---|---|---|---|
| libast:libast | libast | eq | 0.5 |
| libast:libast | libast | eq | 0.4 |
| libast:libast | libast | eq | 0.6.1 |
| libast:libast | libast | eq | 0.6 |
References
freshmeat.net/projects/libast/?branch_id=17907&release_id=217840
secunia.com/advisories/18586
secunia.com/advisories/18632
secunia.com/advisories/18916
securityreason.com/securityalert/373
www.debian.org/security/2006/dsa-976
www.gentoo.org/security/en/glsa/glsa-200601-14.xml
www.mandriva.com/security/advisories?name=MDKSA-2006:029
www.osvdb.org/22735
www.rosiello.org/en/read_bugs.php?id=25
www.securityfocus.com/archive/1/423088/100/0/threaded
www.securityfocus.com/archive/1/423207/100/0/threaded
www.securityfocus.com/archive/1/423366/100/0/threaded
www.securityfocus.com/bid/16350
www.vupen.com/english/advisories/2006/0314
exchange.xforce.ibmcloud.com/vulnerabilities/24303
Related
7.2 High
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
27.4%