CVE-2006-0224

Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument (alternative configuration file name).

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://freshmeat.net/projects/libast/?branch_id=17907&release_id=217840
http://secunia.com/advisories/18586
http://secunia.com/advisories/18632
http://secunia.com/advisories/18916
http://securityreason.com/securityalert/373
http://www.debian.org/security/2006/dsa-976
http://www.gentoo.org/security/en/glsa/glsa-200601-14.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:029
http://www.osvdb.org/22735
http://www.rosiello.org/en/read_bugs.php?id=25	Patch Vendor Advisory
http://www.securityfocus.com/archive/1/423088/100/0/threaded
http://www.securityfocus.com/archive/1/423207/100/0/threaded
http://www.securityfocus.com/archive/1/423366/100/0/threaded
http://www.securityfocus.com/bid/16350	Exploit
http://www.vupen.com/english/advisories/2006/0314
https://exchange.xforce.ibmcloud.com/vulnerabilities/24303

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:libast:libast:0.4:::::::*
	cpe:2.3:a:libast:libast:0.5:::::::*
	cpe:2.3:a:libast:libast:0.6:::::::*
	cpe:2.3:a:libast:libast:0.6.1:::::::*

History

No history.

Information

Published : 2006-01-25 02:03

Updated : 2024-02-04 16:52

NVD link : CVE-2006-0224

Mitre link : CVE-2006-0224

CVE.ORG link : CVE-2006-0224

JSON object : View

Products Affected

libast

libast

CWE

NVD-CWE-Other

{"id": "CVE-2006-0224", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-01-25T02:03:00.000", "references": [{"url": "http://freshmeat.net/projects/libast/?branch_id=17907&release_id=217840", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/18586", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/18632", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/18916", "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/373", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2006/dsa-976", "source": "cve@mitre.org"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200601-14.xml", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:029", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/22735", "source": "cve@mitre.org"}, {"url": "http://www.rosiello.org/en/read_bugs.php?id=25", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/423088/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/423207/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/423366/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/16350", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/0314", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24303", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument (alternative configuration file name)."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en Library of Assorted Spiffy Things (LibAST) 0.6.1 y anteriores, usado en Eterm y posiblemente otros programas, permiten a usuarios locales ejecutar c\u00f3digo de su elecci\u00f3n como el usuario utmp mediante un argumento -X largo (nombre de fichero de configuraci\u00f3n alternativo="}], "lastModified": "2018-10-19T15:43:14.467", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:libast:libast:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E40B2722-86E9-4BB5-8FDF-D35CAD82D966"}, {"criteria": "cpe:2.3:a:libast:libast:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED69500A-FD6F-4E4F-A114-6E430ED89A1D"}, {"criteria": "cpe:2.3:a:libast:libast:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCD09411-CAA0-423A-A111-69A8B27227A3"}, {"criteria": "cpe:2.3:a:libast:libast:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C24BE74-A42B-4856-AD50-7DC7AA9C9B57"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}