Lucene search

K
ubuntuUbuntuUSN-292-1
HistoryJun 09, 2006 - 12:00 a.m.

binutils vulnerability

2006-06-0900:00:00
ubuntu.com
25

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.4%

Releases

  • Ubuntu 6.06
  • Ubuntu 5.10
  • Ubuntu 5.04

Details

CVE-2006-2362

Jesus Olmos Gonzalez discovered a buffer overflow in the Tektronix Hex
Format (TekHex) backend of the BFD library, such as used by the
‘strings’ utility. By tricking an user or automated system into
processing a specially crafted file with ‘strings’ or a vulnerable
third-party application using the BFD library, this could be exploited
to crash the application, or possibly even execute arbitrary code with
the privileges of the user.

OSVersionArchitecturePackageVersionFilename
Ubuntu6.06noarchbinutils-dev< 2.16.1cvs20060117-1ubuntu2.1UNKNOWN
Ubuntu6.06noarchbinutils< 2.16.1cvs20060117-1ubuntu2.1UNKNOWN
Ubuntu5.10noarchbinutils-dev< 2.16.1-2ubuntu6.1UNKNOWN
Ubuntu5.10noarchbinutils< 2.16.1-2ubuntu6.1UNKNOWN
Ubuntu5.04noarchbinutils-dev< 2.15-5ubuntu2.3UNKNOWN
Ubuntu5.04noarchbinutils< 2.15-5ubuntu2.3UNKNOWN

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.4%