Lucene search

[email protected]CVE-2006-6293

HistoryDec 05, 2006 - 11:28 a.m.

CVE-2006-6293

2006-12-0511:28:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2006-6293

buffer overflow

frisk software

f-prot antivirus

remote attack

arbitrary code

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.61 Medium

EPSS

Percentile

97.7%

JSON

Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.

CPENameOperatorVersion
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.11b
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.16b
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.14
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.13a
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.16c
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.13
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.15
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.16e
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.12c
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.15a

CPE	Name	Operator	Version
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.11b
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.16b
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.14
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.13a
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.16c
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.13
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.15
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.16e
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.12c
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.15a

Rows per page:

1-10 of 251

References

gleg.net/fprot.txt

gleg.net/vulndisco_meta.shtml

lists.grok.org.uk/pipermail/full-disclosure/2006-December/051096.html

secunia.com/advisories/22879

secunia.com/advisories/23328

security.gentoo.org/glsa/glsa-200612-12.xml

securitytracker.com/id?1017331

www.f-prot.com/news/gen_news/061201_release_unix467.html

www.osvdb.org/30406

www.securityfocus.com/archive/1/453475/100/0/threaded

www.securityfocus.com/bid/21086

www.vupen.com/english/advisories/2006/4830

www.exploit-db.com/exploits/2893

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.61 Medium

EPSS

Percentile

97.7%

JSON

Related for CVE-2006-6293

cve2 openvas1 gentoo1 nessus1