Lucene search

K

[email protected]NVD:CVE-2006-6103

HistoryDec 31, 2006 - 5:00 a.m.

CVE-2006-6103

2006-12-3105:00:00

[email protected]

web.nvd.nist.gov

6

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:S/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

30.0%

Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.

Affected configurations

Nvd

Node

x.orgx.orgMatch6.8.2

OR

x.orgx.orgMatch6.9.0

OR

x.orgx.orgMatch7.0

OR

x.orgx.orgMatch7.1

OR

xfree86_projectxfree86

VendorProductVersionCPE
x.orgx.org6.8.2cpe:2.3:a:x.org:x.org:6.8.2:*:*:*:*:*:*:*
x.orgx.org6.9.0cpe:2.3:a:x.org:x.org:6.9.0:*:*:*:*:*:*:*
x.orgx.org7.0cpe:2.3:a:x.org:x.org:7.0:*:*:*:*:*:*:*
x.orgx.org7.1cpe:2.3:a:x.org:x.org:7.1:*:*:*:*:*:*:*
xfree86_projectxfree86*cpe:2.3:a:xfree86_project:xfree86:*:*:*:*:*:*:*:*

References

ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2007-002.txt.asc

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01075678

labs.idefense.com/intelligence/vulnerabilities/display.php?id=465

lists.freedesktop.org/archives/xorg-announce/2007-January/000235.html

osvdb.org/32086

secunia.com/advisories/23633

secunia.com/advisories/23670

secunia.com/advisories/23684

secunia.com/advisories/23689

secunia.com/advisories/23698

secunia.com/advisories/23705

secunia.com/advisories/23758

secunia.com/advisories/23789

secunia.com/advisories/23966

secunia.com/advisories/24168

secunia.com/advisories/24210

secunia.com/advisories/24247

secunia.com/advisories/24401

secunia.com/advisories/25802

security.gentoo.org/glsa/glsa-200701-25.xml

securitytracker.com/id?1017495

slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.393555

sunsolve.sun.com/search/document.do?assetkey=1-26-102803-1

support.avaya.com/elmodocs2/security/ASA-2007-066.htm

support.avaya.com/elmodocs2/security/ASA-2007-074.htm

www.mandriva.com/security/advisories?name=MDKSA-2007:005

www.novell.com/linux/security/advisories/2007_08_x.html

www.redhat.com/support/errata/RHSA-2007-0002.html

www.redhat.com/support/errata/RHSA-2007-0003.html

www.securityfocus.com/bid/21968

www.ubuntu.com/usn/usn-403-1

www.vupen.com/english/advisories/2007/0108

www.vupen.com/english/advisories/2007/0109

www.vupen.com/english/advisories/2007/0589

www.vupen.com/english/advisories/2007/0669

www.vupen.com/english/advisories/2007/2233

exchange.xforce.ibmcloud.com/vulnerabilities/31379

issues.rpath.com/browse/RPL-920

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11011

www.debian.org/security/2007/dsa-1249

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:S/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

30.0%

Related for NVD:CVE-2006-6103

ubuntucve1 cve1 cvelist1 debiancve1 securityvulns3 redhat2 nessus17 osv2 oraclelinux1 centos3 openvas14 gentoo1 slackware1 ubuntu1 altlinux1 debian1 suse1