Lucene search

[email protected]CVE-2006-6293

HistoryDec 05, 2006 - 11:28 a.m.

CVE-2006-6293

2006-12-0511:28:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2006-6293

buffer overflow

frisk software

f-prot antivirus

remote attack

arbitrary code

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.61 Medium

EPSS

Percentile

97.8%

JSON

Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.

Affected configurations

NVD

Node

f-protf-prot_antivirusRange≤4.6.6

f-protf-prot_antivirusMatch3.11b

f-protf-prot_antivirusMatch3.12

f-protf-prot_antivirusMatch3.12a

f-protf-prot_antivirusMatch3.12b

f-protf-prot_antivirusMatch3.12c

f-protf-prot_antivirusMatch3.12d

f-protf-prot_antivirusMatch3.13

f-protf-prot_antivirusMatch3.13a

f-protf-prot_antivirusMatch3.14

f-protf-prot_antivirusMatch3.14a

f-protf-prot_antivirusMatch3.14b

f-protf-prot_antivirusMatch3.14c

f-protf-prot_antivirusMatch3.14d

f-protf-prot_antivirusMatch3.14e

f-protf-prot_antivirusMatch3.15

f-protf-prot_antivirusMatch3.15a

f-protf-prot_antivirusMatch3.15b

f-protf-prot_antivirusMatch3.16

f-protf-prot_antivirusMatch3.16a

f-protf-prot_antivirusMatch3.16b

f-protf-prot_antivirusMatch3.16c

f-protf-prot_antivirusMatch3.16d

f-protf-prot_antivirusMatch3.16e

f-protf-prot_antivirusMatch3.16f

CPENameOperatorVersion
f-prot:f-prot_antivirusf-prot f-prot antivirusle4.6.6
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.11b
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.12
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.12a
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.12b
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.12c
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.12d
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.13
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.13a
f-prot:f-prot_antivirusf-prot f-prot antiviruseq3.14

CPE	Name	Operator	Version
f-prot:f-prot_antivirus	f-prot f-prot antivirus	le	4.6.6
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.11b
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.12
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.12a
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.12b
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.12c
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.12d
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.13
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.13a
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	3.14

Rows per page:

1-10 of 251

References

gleg.net/fprot.txt

gleg.net/vulndisco_meta.shtml

lists.grok.org.uk/pipermail/full-disclosure/2006-December/051096.html

secunia.com/advisories/22879

secunia.com/advisories/23328

security.gentoo.org/glsa/glsa-200612-12.xml

securitytracker.com/id?1017331

www.f-prot.com/news/gen_news/061201_release_unix467.html

www.osvdb.org/30406

www.securityfocus.com/archive/1/453475/100/0/threaded

www.securityfocus.com/bid/21086

www.vupen.com/english/advisories/2006/4830

www.exploit-db.com/exploits/2893

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.61 Medium

EPSS

Percentile

97.8%

JSON

Related for CVE-2006-6293

nvd3 cve2 cvelist3 openvas2 gentoo1 nessus1