Lucene search

[email protected]CVE-2006-2409

HistoryMay 16, 2006 - 10:02 a.m.

CVE-2006-2409

2006-05-1610:02:00

CWE-134

[email protected]

web.nvd.nist.gov

cve-2006-2409

format string vulnerability

raydium

svn revision 310

arbitrary code execution

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.0%

JSON

Format string vulnerability in the raydium_log function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydium_console_line_add.

Affected configurations

NVD

Node

raydiumraydiumMatchsvn_revision_283

raydiumraydiumMatchsvn_revision_284

raydiumraydiumMatchsvn_revision_285

raydiumraydiumMatchsvn_revision_286

raydiumraydiumMatchsvn_revision_287

raydiumraydiumMatchsvn_revision_288

raydiumraydiumMatchsvn_revision_289

raydiumraydiumMatchsvn_revision_290

raydiumraydiumMatchsvn_revision_291

raydiumraydiumMatchsvn_revision_292

raydiumraydiumMatchsvn_revision_293

raydiumraydiumMatchsvn_revision_294

raydiumraydiumMatchsvn_revision_295

raydiumraydiumMatchsvn_revision_296

raydiumraydiumMatchsvn_revision_297

raydiumraydiumMatchsvn_revision_298

raydiumraydiumMatchsvn_revision_299

raydiumraydiumMatchsvn_revision_300

raydiumraydiumMatchsvn_revision_301

raydiumraydiumMatchsvn_revision_302

raydiumraydiumMatchsvn_revision_303

raydiumraydiumMatchsvn_revision_304

raydiumraydiumMatchsvn_revision_305

raydiumraydiumMatchsvn_revision_306

raydiumraydiumMatchsvn_revision_307

raydiumraydiumMatchsvn_revision_308

raydiumraydiumMatchsvn_revision_309

CPENameOperatorVersion
raydium:raydiumraydiumeqsvn_revision_283
raydium:raydiumraydiumeqsvn_revision_284
raydium:raydiumraydiumeqsvn_revision_285
raydium:raydiumraydiumeqsvn_revision_286
raydium:raydiumraydiumeqsvn_revision_287
raydium:raydiumraydiumeqsvn_revision_288
raydium:raydiumraydiumeqsvn_revision_289
raydium:raydiumraydiumeqsvn_revision_290
raydium:raydiumraydiumeqsvn_revision_291
raydium:raydiumraydiumeqsvn_revision_292

CPE	Name	Operator	Version
raydium:raydium	raydium	eq	svn_revision_283
raydium:raydium	raydium	eq	svn_revision_284
raydium:raydium	raydium	eq	svn_revision_285
raydium:raydium	raydium	eq	svn_revision_286
raydium:raydium	raydium	eq	svn_revision_287
raydium:raydium	raydium	eq	svn_revision_288
raydium:raydium	raydium	eq	svn_revision_289
raydium:raydium	raydium	eq	svn_revision_290
raydium:raydium	raydium	eq	svn_revision_291
raydium:raydium	raydium	eq	svn_revision_292

Rows per page:

1-10 of 271

References

aluigi.altervista.org/adv/raydiumx-adv.txt

raydium.org/svn.php

secunia.com/advisories/20097

securityreason.com/securityalert/900

www.securityfocus.com/archive/1/433930/100/0/threaded

www.securityfocus.com/bid/17986

www.vupen.com/english/advisories/2006/1808

exchange.xforce.ibmcloud.com/vulnerabilities/26514

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.0%

JSON

Related for CVE-2006-2409

cvelist1 prion1 nvd1