CVE-2006-3118

spread uses a temporary file with a static filename based on the port number, which allows local users to cause a denial of service by creating the file during a race condition between unlink and bind function calls. NOTE: spread deletes this temporary file before use, which could cause conflicts with other programs that use the same filename, but this is not a distinct issue.

CVSS v2.0 1.2 LOW

1.2^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:H/Au:N/C:N/I:N/A:P

Exploitability : 1.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617
http://www.securityfocus.com/bid/18675
https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617
http://www.securityfocus.com/bid/18675
https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171

Configurations

Configuration 1 (hide)

cpe:2.3:a:canonical:spread:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:12

Type	Values Removed	Values Added
References	~~() http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617 -~~	() http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617 -
References	~~() http://www.securityfocus.com/bid/18675 -~~	() http://www.securityfocus.com/bid/18675 -
References	~~() https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171 -~~	() https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171 -

Information

Published : 2006-06-30 19:05

Updated : 2024-11-21 00:12

NVD link : CVE-2006-3118

Mitre link : CVE-2006-3118

CVE.ORG link : CVE-2006-3118

JSON object : View

Products Affected

canonical

spread

CWE

NVD-CWE-Other

{"id": "CVE-2006-3118", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 1.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-06-30T19:05:00.000", "references": [{"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/bid/18675", "source": "security@debian.org"}, {"url": "https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171", "source": "security@debian.org"}, {"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=375617", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/18675", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://launchpad.net/distros/ubuntu/+source/spread/+bug/44171", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "spread uses a temporary file with a static filename based on the port number, which allows local users to cause a denial of service by creating the file during a race condition between unlink and bind function calls. NOTE: spread deletes this temporary file before use, which could cause conflicts with other programs that use the same filename, but this is not a distinct issue."}, {"lang": "es", "value": "spread utiliza un archivo temporal con un nombre de archivo est\u00e1tico basado en el n\u00famero de puerto, lo que permite a los usuarios locales causar una denegaci\u00f3n de servicio, creando un archivo durante una condici\u00f3n de carrera entre llamadas a funciones \"unlink\" y \"blind\" NOTA: spread borra estos archivos temporales antes de su uso, lo que podr\u00eda causar conflictos con otros programas que usan el mismo nombre de archivo, pero esto no es un asunto distinto."}], "lastModified": "2024-11-21T00:12:51.570", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:canonical:spread:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBAC592F-0E73-44CA-AF3A-F351E30B7A4A"}], "operator": "OR"}]}], "sourceIdentifier": "security@debian.org"}