Lucene search

[email protected]CVE-2006-3424

HistoryJul 07, 2006 - 12:05 a.m.

CVE-2006-3424

2006-07-0700:05:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-3424

buffer overflow

webex

activex control

remote code execution

vulnerability

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.04 Low

EPSS

Percentile

91.9%

JSON

Multiple buffer overflows in WebEx Downloader ActiveX Control, possibly in versions before November 2005, allow remote attackers to execute arbitrary code via unspecified vectors.

CPENameOperatorVersion
webex_communications:webex_downloader_activex_controlwebex communications webex downloader activex controleq*

CPE	Name	Operator	Version
webex_communications:webex_downloader_activex_control	webex communications webex downloader activex control	eq	*

References

secunia.com/advisories/20956

www.vupen.com/english/advisories/2006/2688

xforce.iss.net/xforce/alerts/id/226

exchange.xforce.ibmcloud.com/vulnerabilities/27786

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.04 Low

EPSS

Percentile

91.9%

JSON