Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDD9307A41-C4D7-11DA-B2FB-000E0C2E438A
HistoryFeb 22, 2006 - 12:00 a.m.

zoo -- stack based buffer overflow

2006-02-2200:00:00
vuxml.freebsd.org
9

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.7%

JSON

Jean-Sébastien Guay-Leroux report a vulnerability
within the zoo archiver. The vulnerability which is present
in the fullpath() function (from the misc.c file) is caused by
improper checking of user supplied data. The data returned
to the buffer can be up to 512 bytes, while the buffer is
created to hold 256 bytes. This could result in a buffer
overflow which could allow remote code execution.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchzoo< 2.10.1_2UNKNOWN

Related

cve 1
openvas 6
ubuntucve 1
prion 1
nessus 3
nvd 1
gentoo 1
debiancve 1
debian 2
osv 1
cvelist 1
securityvulns 1
cve
cve
CVE-2006-0855
2006-02-23 21:02:00
openvas
openvas
Debian Security Advisory DSA 991-1 (zoo)
2008-01-17 00:00:00
FreeBSD Ports: zoo
2008-09-04 00:00:00
Debian: Security Advisory (DSA-991-1)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2006-0855
2006-02-23 00:00:00
prion
prion
Stack overflow
2006-02-23 21:02:00
nessus
nessus
Debian DSA-991-1 : zoo - buffer overflow
2006-10-14 00:00:00
GLSA-200603-05 : zoo: Stack-based buffer overflow
2006-03-07 00:00:00
FreeBSD : zoo -- stack based buffer overflow (d9307a41-c4d7-11da-b2fb-000e0c2e438a)
2006-05-13 00:00:00
nvd
nvd
CVE-2006-0855
2006-02-23 21:02:00
gentoo
gentoo
zoo: Stack-based buffer overflow
2006-03-06 00:00:00
debiancve
debiancve
CVE-2006-0855
2006-02-23 21:02:00
debian
debian
[SECURITY] [DSA 991-1] New zoo packages fix arbitrary code execution
2006-03-10 10:23:00
[SECURITY] [DSA 991-1] New zoo packages fix arbitrary code execution
2006-03-10 10:23:00
osv
osv
zoo - buffer overflow
2006-03-10 00:00:00
cvelist
cvelist
CVE-2006-0855
2006-02-23 21:00:00
securityvulns
securityvulns
[Full-disclosure] Barracuda ZOO archiver security bug leads to remote compromise
2006-04-04 00:00:00

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.7%

JSON
Related for D9307A41-C4D7-11DA-B2FB-000E0C2E438A
cve1openvas6ubuntucve1prion1nessus3nvd1gentoo1debiancve1debian2osv1cvelist1securityvulns1