Lucene search

[email protected]CVE-2006-6024

HistoryNov 21, 2006 - 11:07 p.m.

CVE-2006-6024

2006-11-2123:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

eudora worldmail

buffer overflow

cve-2006-6024

vulnerability

security

eudora

worldmail

6.1.22.0

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

69.3%

JSON

Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) “Eudora WorldMail stack overflow” and (2) “Eudora WorldMail heap overflow” modules in VulnDisco Pack. NOTE: Some of these details are obtained from third party information. As of 20061118, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

CPENameOperatorVersion
qualcomm:eudora_worldmailqualcomm eudora worldmaileq3.0_version_6.1.22.0

CPE	Name	Operator	Version
qualcomm:eudora_worldmail	qualcomm eudora worldmail	eq	3.0_version_6.1.22.0

References

secunia.com/advisories/22832

web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml

www.securityfocus.com/bid/21095

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

69.3%

JSON

Related for CVE-2006-6024

cvelist1