Lucene search

[email protected]NVD:CVE-2006-4020

HistoryAug 08, 2006 - 8:04 p.m.

CVE-2006-4020

2006-08-0820:04:00

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.002

Percentile

55.7%

JSON

scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a buffer over-read.

Affected configurations

NVD

Node

phpphpMatch4.0

phpphpMatch4.0beta_4_patch1

phpphpMatch4.0beta1

phpphpMatch4.0beta2

phpphpMatch4.0beta3

phpphpMatch4.0beta4

phpphpMatch4.0rc1

phpphpMatch4.0rc2

phpphpMatch4.0.0

phpphpMatch4.0.1

phpphpMatch4.0.1patch1

phpphpMatch4.0.1patch2

phpphpMatch4.0.2

phpphpMatch4.0.3

phpphpMatch4.0.3patch1

phpphpMatch4.0.4

phpphpMatch4.0.4patch1

phpphpMatch4.0.5

phpphpMatch4.0.6

phpphpMatch4.0.7

phpphpMatch4.0.7rc1

phpphpMatch4.0.7rc2

phpphpMatch4.0.7rc3

phpphpMatch4.1.0

phpphpMatch4.1.1

phpphpMatch4.1.2

phpphpMatch4.2dev

phpphpMatch4.2.0

phpphpMatch4.2.1

phpphpMatch4.2.2

phpphpMatch4.2.3

phpphpMatch4.3.0

phpphpMatch4.3.1

phpphpMatch4.3.2

phpphpMatch4.3.3

phpphpMatch4.3.4

phpphpMatch4.3.5

phpphpMatch4.3.6

phpphpMatch4.3.7

phpphpMatch4.3.8

phpphpMatch4.3.9

phpphpMatch4.3.10

phpphpMatch4.3.11

phpphpMatch4.4.0

phpphpMatch4.4.1

phpphpMatch4.4.2

phpphpMatch4.4.3

phpphpMatch5.0rc1

phpphpMatch5.0rc2

phpphpMatch5.0rc3

phpphpMatch5.0.0

phpphpMatch5.0.0beta1

phpphpMatch5.0.0beta2

phpphpMatch5.0.0beta3

phpphpMatch5.0.0beta4

phpphpMatch5.0.0rc1

phpphpMatch5.0.0rc2

phpphpMatch5.0.0rc3

phpphpMatch5.0.1

phpphpMatch5.0.2

phpphpMatch5.0.3

phpphpMatch5.0.4

phpphpMatch5.0.5

phpphpMatch5.1.0

phpphpMatch5.1.1

phpphpMatch5.1.2

phpphpMatch5.1.4

References

ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc

bugs.php.net/bug.php?id=38322

rhn.redhat.com/errata/RHSA-2006-0688.html

rhn.redhat.com/errata/RHSA-2006-0736.html

secunia.com/advisories/21403

secunia.com/advisories/21467

secunia.com/advisories/21546

secunia.com/advisories/21608

secunia.com/advisories/21683

secunia.com/advisories/21768

secunia.com/advisories/21847

secunia.com/advisories/22004

secunia.com/advisories/22039

secunia.com/advisories/22069

secunia.com/advisories/22440

secunia.com/advisories/22487

secunia.com/advisories/22538

secunia.com/advisories/23247

security.gentoo.org/glsa/glsa-200608-28.xml

securityreason.com/securityalert/1341

securitytracker.com/id?1016984

support.avaya.com/elmodocs2/security/ASA-2006-221.htm

support.avaya.com/elmodocs2/security/ASA-2006-222.htm

support.avaya.com/elmodocs2/security/ASA-2006-223.htm

www.mandriva.com/security/advisories?name=MDKSA-2006:144

www.novell.com/linux/security/advisories/2006_19_sr.html

www.novell.com/linux/security/advisories/2006_20_sr.html

www.novell.com/linux/security/advisories/2006_22_sr.html

www.novell.com/linux/security/advisories/2006_52_php.html

www.php.net/ChangeLog-5.php#5.1.5

www.php.net/release_5_1_5.php

www.plain-text.info/sscanf_bug.txt

www.redhat.com/support/errata/RHSA-2006-0669.html

www.redhat.com/support/errata/RHSA-2006-0682.html

www.securityfocus.com/archive/1/442438/30/0/threaded

www.securityfocus.com/bid/19415

www.ubuntu.com/usn/usn-342-1

www.vupen.com/english/advisories/2006/3193

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11062

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.002

Percentile

55.7%

JSON

Related for NVD:CVE-2006-4020

ubuntucve1 nessus13 gentoo1 openvas8 cve1 cvelist1 centos2 ubuntu1 redhat3 oraclelinux2 suse1