Lucene search

[email protected]CVE-2006-0963

HistoryMar 02, 2006 - 11:02 p.m.

CVE-2006-0963

2006-03-0223:02:00

CWE-120

[email protected]

web.nvd.nist.gov

cve-2006-0963

buffer overflow

stlport 5.0.2

arbitrary code execution

nvd

8.3 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via (1) long locale environment variables to a strcpy function call in c_locale_glibc2.c and (2) long arguments to unspecified functions in num_put_float.cpp.

CPENameOperatorVersion
stlport_project:stlportstlport project stlporteq5.0.2

CPE	Name	Operator	Version
stlport_project:stlport	stlport project stlport	eq	5.0.2

References

secunia.com/advisories/19051

sourceforge.net/project/shownotes.php?release_id=397543

www.securityfocus.com/bid/16928

www.vupen.com/english/advisories/2006/0800

exchange.xforce.ibmcloud.com/vulnerabilities/25159

Social References

8.3 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2006-0963

prion1