Lucene search

[email protected]CVE-2006-1172

HistoryMay 09, 2006 - 10:02 a.m.

CVE-2006-1172

2006-05-0910:02:00

[email protected]

web.nvd.nist.gov

cve-2006-1172

stack-based buffer overflow

cryptomathic cenroll

activex control

security vulnerability

remote code execution

tdc digital signature

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

8.1 High

AI Score

Confidence

Low

0.178 Low

EPSS

Percentile

96.2%

JSON

Stack-based buffer overflow in the createPKCS10 function in Cryptomathic Cenroll ActiveX Control 1.1.0.0 allows remote attackers to execute arbitrary code via vectors related to the TDC Digital signature.

Affected configurations

NVD

Node

tdccryptomathic_cenroll_activex_controlMatch1.1.0.0

CPENameOperatorVersion
tdc:cryptomathic_cenroll_activex_controltdc cryptomathic cenroll activex controleq1.1.0.0

CPE	Name	Operator	Version
tdc:cryptomathic_cenroll_activex_control	tdc cryptomathic cenroll activex control	eq	1.1.0.0

References

cirt.dk/advisories/cirt-43-advisory.pdf

secunia.com/advisories/19968

securitytracker.com/id?1016034

www.kb.cert.org/vuls/id/548689

www.osvdb.org/25282

www.securityfocus.com/archive/1/433079/100/0/threaded

www.securityfocus.com/bid/17852

www.vupen.com/english/advisories/2006/1675

exchange.xforce.ibmcloud.com/vulnerabilities/26255

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

8.1 High

AI Score

Confidence

Low

0.178 Low

EPSS

Percentile

96.2%

JSON

Related for CVE-2006-1172

cvelist1 prion1 nvd1