Lucene search

[email protected]CVE-2006-2114

HistoryMay 01, 2006 - 7:06 p.m.

CVE-2006-2114

2006-05-0119:06:00

[email protected]

web.nvd.nist.gov

cve-2006-2114

buffer overflow

sws web server

remote attackers

arbitrary code

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.026

Percentile

90.3%

JSON

Buffer overflow in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via a long request.

Affected configurations

NVD

Node

swssws_simple_web_serverMatch0.0.3

swssws_simple_web_serverMatch0.0.4

swssws_simple_web_serverMatch0.1

swssws_simple_web_serverMatch0.1.1

swssws_simple_web_serverMatch0.1.2

swssws_simple_web_serverMatch0.1.3

swssws_simple_web_serverMatch0.1.4

swssws_simple_web_serverMatch0.1.5

swssws_simple_web_serverMatch0.1.6

swssws_simple_web_serverMatch0.1.7

VendorProductVersionCPE
swssws_simple_web_server0.1.1cpe:/a:sws:sws_simple_web_server:0.1.1:::
swssws_simple_web_server0.1.4cpe:/a:sws:sws_simple_web_server:0.1.4:::
swssws_simple_web_server0.1.6cpe:/a:sws:sws_simple_web_server:0.1.6:::
swssws_simple_web_server0.1cpe:/a:sws:sws_simple_web_server:0.1:::
swssws_simple_web_server0.1.3cpe:/a:sws:sws_simple_web_server:0.1.3:::
swssws_simple_web_server0.1.7cpe:/a:sws:sws_simple_web_server:0.1.7:::
swssws_simple_web_server0.0.4cpe:/a:sws:sws_simple_web_server:0.0.4:::
swssws_simple_web_server0.1.2cpe:/a:sws:sws_simple_web_server:0.1.2:::
swssws_simple_web_server0.1.5cpe:/a:sws:sws_simple_web_server:0.1.5:::
swssws_simple_web_server0.0.3cpe:/a:sws:sws_simple_web_server:0.0.3:::

Vendor	Product	Version	CPE
sws	sws_simple_web_server	0.1.1	cpe:/a:sws:sws_simple_web_server:0.1.1:::
sws	sws_simple_web_server	0.1.4	cpe:/a:sws:sws_simple_web_server:0.1.4:::
sws	sws_simple_web_server	0.1.6	cpe:/a:sws:sws_simple_web_server:0.1.6:::
sws	sws_simple_web_server	0.1	cpe:/a:sws:sws_simple_web_server:0.1:::
sws	sws_simple_web_server	0.1.3	cpe:/a:sws:sws_simple_web_server:0.1.3:::
sws	sws_simple_web_server	0.1.7	cpe:/a:sws:sws_simple_web_server:0.1.7:::
sws	sws_simple_web_server	0.0.4	cpe:/a:sws:sws_simple_web_server:0.0.4:::
sws	sws_simple_web_server	0.1.2	cpe:/a:sws:sws_simple_web_server:0.1.2:::
sws	sws_simple_web_server	0.1.5	cpe:/a:sws:sws_simple_web_server:0.1.5:::
sws	sws_simple_web_server	0.0.3	cpe:/a:sws:sws_simple_web_server:0.0.3:::

References

securityreason.com/securityalert/816

www.securityfocus.com/archive/1/432362/100/0/threaded

www.securityfocus.com/bid/17737

exchange.xforce.ibmcloud.com/vulnerabilities/26159

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.026

Percentile

90.3%

JSON

Related for CVE-2006-2114

prion1 cvelist1 nvd1