Lucene search

[email protected]CVE-2006-6352

HistoryDec 07, 2006 - 1:28 a.m.

CVE-2006-6352

2006-12-0701:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

frisk software

f-prot antivirus

cve-2006-6352

denial of service

remote attack

6.5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.19 Low

EPSS

Percentile

96.2%

JSON

FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to cause a denial of service (infinite loop) via a crafted ACE file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.

CPENameOperatorVersion
frisk_software:f-prot_antivirusfrisk software f-prot antivirusle4.6.6
frisk_software:f-prot_antivirusfrisk software f-prot antiviruseq3.16f

CPE	Name	Operator	Version
frisk_software:f-prot_antivirus	frisk software f-prot antivirus	le	4.6.6
frisk_software:f-prot_antivirus	frisk software f-prot antivirus	eq	3.16f

References

gleg.net/fprot.txt

lists.grok.org.uk/pipermail/full-disclosure/2006-December/051096.html

secunia.com/advisories/23328

security.gentoo.org/glsa/glsa-200612-12.xml

securityreason.com/securityalert/1998

securitytracker.com/id?1017331

www.f-prot.com/news/gen_news/061201_release_unix467.html

www.securityfocus.com/archive/1/453475/100/0/threaded

www.securityfocus.com/bid/21420

exchange.xforce.ibmcloud.com/vulnerabilities/30707

www.exploit-db.com/exploits/2892

6.5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.19 Low

EPSS

Percentile

96.2%

JSON

Related for CVE-2006-6352

openvas2 nessus1 gentoo1 cve2