Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2006-4842
HistoryOct 12, 2006 - 12:00 a.m.

CVE-2006-4842

2006-10-1200:00:00
ubuntu.com
ubuntu.com
10

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

EPSS

0.004

Percentile

73.7%

JSON

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun
Solaris 10, trusts user-specified environment variables for specifying log
files even when running from setuid programs, which allows local users to
create or overwrite arbitrary files.

Related

canvas 1
seebug 9
packetstorm 1
zdt 4
exploitdb 6
exploitpack 5
securityvulns 1
cvelist 1
cve 1
metasploit 1
nvd 1
nessus 18
canvas
canvas
Immunity Canvas: CVE_2006_4842
2006-10-12 00:07:00
seebug
seebug
Solaris 10 libnspr - constructor Local Root Exploit
2014-07-01 00:00:00
Solaris 10 libnspr LD_PRELOAD Arbitrary File Creation Local Root Exploit
2006-10-27 00:00:00
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation Vulnerability (2)
2014-07-01 00:00:00
packetstorm
packetstorm
Solaris libnspr NSPR_LOG_FILE Privilege Escalation
2018-09-18 00:00:00
zdt
zdt
Solaris libnspr NSPR_LOG_FILE Privilege Escalation Exploit
2018-09-18 00:00:00
Solaris 10 libnspr LD_PRELOAD Arbitrary File Creation Local Root Exploit
2006-10-16 00:00:00
Solaris 10 libnspr constructor Local Root Exploit
2006-10-24 00:00:00
exploitdb
exploitdb
Solaris 10 libnspr - 'LD_PRELOAD' Arbitrary File Creation Privilege Escalation (1)
2006-10-13 00:00:00
Solaris 10 libnspr - 'LD_PRELOAD' Arbitrary File Creation Privilege Escalation (2)
2006-10-16 00:00:00
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (1)
2006-10-13 00:00:00
exploitpack
exploitpack
Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Privilege Escalation (1)
2006-10-13 00:00:00
Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Privilege Escalation (2)
2006-10-16 00:00:00
Solaris 10 libnspr - Constructor Arbitrary File Creation Privilege Escalation (3)
2006-10-24 00:00:00
securityvulns
securityvulns
[Full-disclosure] iDefense Security Advisory 10.11.06: Sun Microsystems Solaris NSPR Library Arbitrary File Creation Vulnerability
2006-10-12 00:00:00
cvelist
cvelist
CVE-2006-4842
2006-10-12 00:00:00
cve
cve
CVE-2006-4842
2006-10-12 00:07:00
metasploit
metasploit
Solaris libnspr NSPR_LOG_FILE Privilege Escalation
2018-09-11 08:11:11
nvd
nvd
CVE-2006-4842
2006-10-12 00:07:00
nessus
nessus
Solaris 10 (x86) : 119214-36 (deprecated)
2005-10-19 00:00:00
Solaris 10 (x86) : 119214-33
2018-03-12 00:00:00
Solaris 10 (sparc) : 119213-33
2018-03-12 00:00:00

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

EPSS

0.004

Percentile

73.7%

JSON
Related for UB:CVE-2006-4842
canvas1seebug9packetstorm1zdt4exploitdb6exploitpack5securityvulns1cvelist1cve1metasploit1nvd1nessus18