Lucene search

K
redhatcveRedhat.comRH:CVE-2006-5969
HistoryOct 30, 2015 - 9:21 a.m.

CVE-2006-5969

2015-10-3009:21:06
redhat.com
access.redhat.com
3

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.7%

CRLF injection vulnerability in the evalFolderLine function in fvwm 2.5.18 and earlier allows local users to execute arbitrary commands via carriage returns in a directory name, which is not properly handled by fvwm-menu-directory, a variant of CVE-2003-1308.

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.7%