Lucene search
HistoryNov 17, 2006 - 11:07 p.m.
CVE-2006-5969
cve-2006-5969
crlf injection
evalfolderline function
fvwm 2.5.18
directory name vulnerability
7.2 High
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
24.6%
CRLF injection vulnerability in the evalFolderLine function in fvwm 2.5.18 and earlier allows local users to execute arbitrary commands via carriage returns in a directory name, which is not properly handled by fvwm-menu-directory, a variant of CVE-2003-1308.
Related
redhatcve
redhatcve
CVE-2006-5969
2015-10-30 09:21:06
CVE-2003-1308
2015-10-30 09:29:45
ubuntucve
ubuntucve
CVE-2006-5969
2006-11-17 00:00:00
debiancve
debiancve
CVE-2006-5969
2006-11-17 23:07:00
CVE-2003-1308
2003-12-31 05:00:00
nessus
nessus
GLSA-200611-17 : fvwm: fvwm-menu-directory fvwm command injection
2006-11-27 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200611-17 (fvwm)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200611-17 (fvwm)
2008-09-24 00:00:00
securityvulns
securityvulns
[ GLSA 200611-17 ] fvwm: fvwm-menu-directory fvwm command injection
2006-11-25 00:00:00
gentoo
gentoo
fvwm: fvwm-menu-directory fvwm command injection
2006-11-23 00:00:00
cve
cve
CVE-2003-1308
2003-12-31 05:00:00
7.2 High
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
24.6%
Related for CVE-2006-5969