Lucene search

[email protected]CVE-2006-0965

HistoryMar 02, 2006 - 11:02 p.m.

CVE-2006-0965

2006-03-0223:02:00

[email protected]

web.nvd.nist.gov

ncp

network communication secure client

cve-2006-0965

security bypass

buffer overflow

nvd

6.6 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.1%

JSON

NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to bypass security protections and configure privileged options via a long argument to ncpmon.exe, which provides access to alternate privileged menus, possibly due to a buffer overflow.

Affected configurations

NVD

Node

ncp_network_communicationssecure_clientMatch8.11_build_146

CPENameOperatorVersion
ncp_network_communications:secure_clientncp network communications secure clienteq8.11_build_146

CPE	Name	Operator	Version
ncp_network_communications:secure_client	ncp network communications secure client	eq	8.11_build_146

References

lists.grok.org.uk/pipermail/full-disclosure/2006-March/042640.html

secunia.com/advisories/19082

www.securityfocus.com/archive/1/426480/100/0/threaded

www.securityfocus.com/bid/16906

exchange.xforce.ibmcloud.com/vulnerabilities/25243

6.6 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2006-0965

prion1 nvd1 cvelist1