6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7 High
AI Score
Confidence
High
0.97 High
EPSS
Percentile
99.7%
Package : mono
Version : 2.6.7-5.1+deb6u2
CVE ID : CVE-2009-0689
Mono's string-to-double parser may crash, on specially crafted input. This
could theoretically lead to arbitrary code execution.
This issue has been fixed in Debian 6 Squeeze with the version
2.6.7-5.1+deb6u2 of mono. We recommend that you upgrade your
mono packages.
–
Raphaël Hertzog ◈ Debian Developer
Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/
Attachment:
signature.asc
Description: PGP signature