Lucene search
Japan Vulnerability NotesJVN:74294680HistoryApr 21, 2006 - 12:00 a.m.
JVN#74294680 Winny buffer overflow vulnerability
2006-04-2100:00:00
Japan Vulnerability Notes
jvn.jp
8
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.358 Low
EPSS
Percentile
97.2%
Impact
If a remote attacker sends a malicious packet, Winny will crash.
It is publicly reported that arbitrary code may be executed with the privilege running Winny.
Solution
Products Affected
- Winny 2.0 b7.1 and earlier
As of May 25, 2006, exploit information is publicly available. Currently we are not aware of any attacks. It is recommended that users avoid using Winny.
Related
cert
cert
Winny contains a buffer overflow
2006-04-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Winny Remote Buffer Overflow Vulnerability
2006-05-21 00:00:00
prion
prion
Heap overflow
2006-04-25 12:50:00
Buffer overflow
2010-08-25 20:00:00
cvelist
cvelist
CVE-2006-2007
2006-04-25 10:00:00
CVE-2010-2360
2010-08-25 19:00:00
cve
cve
CVE-2006-2007
2006-04-25 12:50:00
CVE-2010-2360
2010-08-25 20:00:17
nvd
nvd
CVE-2006-2007
2006-04-25 12:50:00
CVE-2010-2360
2010-08-25 20:00:17
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.358 Low
EPSS
Percentile
97.2%
Related for JVN:74294680