Lucene search

[email protected]CVE-2006-1150

HistoryMar 10, 2006 - 11:02 a.m.

CVE-2006-1150

2006-03-1011:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-1150

buffer overflow

teg 0.11.1

denial of service

remote attackers

7.1 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.022 Low

EPSS

Percentile

89.3%

JSON

Buffer overflow in Tenes Empanadas Graciela (TEG) 0.11.1, automatically appends an _ (underscore) to the end of duplicate nicknames, which allows remote attackers to cause a denial of service (application crash) by creating multiple users with long, identical nicknames, which triggers an off-by-one error.

CPENameOperatorVersion
teg:tenes_empanadas_gracielateg tenes empanadas gracielaeq0.11.1

CPE	Name	Operator	Version
teg:tenes_empanadas_graciela	teg tenes empanadas graciela	eq	0.11.1

References

aluigi.altervista.org/adv/tegob1-adv.txt

secunia.com/advisories/19134

www.securityfocus.com/bid/16982

www.vupen.com/english/advisories/2006/0846

exchange.xforce.ibmcloud.com/vulnerabilities/25165

7.1 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.022 Low

EPSS

Percentile

89.3%

JSON

Related for CVE-2006-1150

ubuntucve1 prion1 debiancve1