PRIOn knowledge basePRION:CVE-2006-0482Command injection
6.5 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
23.4%
Linux kernel 2.6.15.1 and earlier, when running on SPARC architectures, allows local users to cause a denial of service (hang) via a “date -s” command, which causes invalid sign extended arguments to be provided to the get_compat_timespec function call.
References
lists.debian.org/debian-sparc/2006/01/msg00129.html
secunia.com/advisories/19374
www.debian.org/security/2006/dsa-1017
www.securityfocus.com/bid/17216
www.vupen.com/english/advisories/2006/0418
exchange.xforce.ibmcloud.com/vulnerabilities/24475
marc.info/?l=linux-sparc&m=113861010514065&w=2
marc.info/?l=linux-sparc&m=113861287813463&w=2
Related
6.5 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
23.4%