Lucene search

[email protected]CVE-2006-6410

HistoryDec 10, 2006 - 2:28 a.m.

CVE-2006-6410

2006-12-1002:28:00

[email protected]

web.nvd.nist.gov

cve-2006-6410

buffer overflow

vmware

activex control

security

vulnerability

nvd

7.8 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

0.4%

JSON

Buffer overflow in an ActiveX control in VMWare 5.5.1 allows local users to execute arbitrary code via a long VmdbDb parameter to the Initialize function.

Affected configurations

NVD

Node

vmwareworkstationMatch5.5.1

CPENameOperatorVersion
vmware:workstationvmware workstationeq5.5.1

CPE	Name	Operator	Version
vmware:workstation	vmware workstation	eq	5.5.1

References

securityreason.com/securityalert/2008

www.open-security.org/advisories/17

www.securityfocus.com/archive/1/452746/100/100/threaded

www.securityfocus.com/archive/1/452775/100/100/threaded

www.securityfocus.com/bid/19732

www.exploit-db.com/exploits/2264

7.8 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2006-6410

cvelist1 nvd1