Lucene search
PRIOn knowledge basePRION:CVE-2006-0803HistoryFeb 23, 2006 - 8:02 p.m.
Code injection
2006-02-2320:02:00
PRIOn knowledge base
www.prio-n.com
1
7.2 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.0%
The signature verification functionality in the YaST Online Update (YOU) script handling relies on a gpg feature that is not intended for signature verification, which prevents YOU from detecting malicious scripts or code that do not pass the signature check when gpg 1.4.x is being used.
| CPE | Name | Operator | Version |
|---|---|---|---|
| suse_linux | eq | 10.0 | |
| suse_linux | eq | 9.3 |
Related
nessus
nessus
SuSE9 Security Update : liby2util (YOU Patch Number 10892)
2009-09-24 00:00:00
openvas
openvas
SLES9: Security update for liby2util
2009-10-10 00:00:00
SLES9: Security update for liby2util
2009-10-10 00:00:00
cve
cve
CVE-2006-0803
2006-02-23 20:02:00
suse
suse
remote code execution in gpg,liby2util
2006-02-20 16:55:38
remote code execution in gpg,liby2util
2006-03-01 09:23:07
7.2 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.0%
Related for PRION:CVE-2006-0803