Lucene search

[email protected]NVD:CVE-2006-0618

HistoryFeb 09, 2006 - 2:02 a.m.

CVE-2006-0618

2006-02-0902:02:00

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

High

EPSS

0.025

Percentile

90.1%

JSON

Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name).

Affected configurations

Nvd

Node

qnxneutrino_rtosMatch6.3.0

VendorProductVersionCPE
qnxneutrino_rtos6.3.0cpe:2.3:a:qnx:neutrino_rtos:6.3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qnx	neutrino_rtos	6.3.0	cpe:2.3:a:qnx:neutrino_rtos:6.3.0:::::::*

References

secunia.com/advisories/18750

securitytracker.com/id?1015599

www.idefense.com/intelligence/vulnerabilities/display.php?id=380

www.osvdb.org/22966

www.securityfocus.com/bid/16539

www.vupen.com/english/advisories/2006/0474

exchange.xforce.ibmcloud.com/vulnerabilities/24559

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

High

EPSS

0.025

Percentile

90.1%

JSON

Related for NVD:CVE-2006-0618

cve1 cvelist1 prion1