Lucene search

[email protected]CVE-2006-0966

HistoryMar 02, 2006 - 11:02 p.m.

CVE-2006-0966

2006-03-0223:02:00

CWE-119

CWE-399

[email protected]

web.nvd.nist.gov

cve-2006-0966

ncp network communication secure client

denial of service

cpu consumption

buffer overflow

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to cause a denial of service (CPU consumption) via a large number of arguments to ncprwsnt.exe, possibly due to a buffer overflow.

Affected configurations

NVD

Node

ncp_network_communicationssecure_clientMatch8.11_build_146

CPENameOperatorVersion
ncp_network_communications:secure_clientncp network communications secure clienteq8.11_build_146

CPE	Name	Operator	Version
ncp_network_communications:secure_client	ncp network communications secure client	eq	8.11_build_146

References

lists.grok.org.uk/pipermail/full-disclosure/2006-March/042640.html

secunia.com/advisories/19082

www.securityfocus.com/archive/1/426480/100/0/threaded

www.securityfocus.com/bid/16906

exchange.xforce.ibmcloud.com/vulnerabilities/25248

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2006-0966

cvelist1 nvd1 prion1