CVE-2006-6146

{"id": "CVE-2006-6146", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.6, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2006-11-28T23:28:00.000", "references": [{"url": "http://sourceforge.net/project/shownotes.php?release_id=465886", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1597538&group_id=83044&atid=568129", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/21259", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/4675", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=465886", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1597538&group_id=83044&atid=568129", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/21259", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/4675", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the HPDF_Page_Circle function in hpdf_page_operator.c in Takeshi Kanno Haru Free PDF Library (libharu2, aka libharu) 2.0.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via certain arguments that yield a large amount of PDF data, as demonstrated by a filled circle."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en la funci\u00f3n HPDF_Page_Circle en hpdf_page_operator.c en Takeshi Kanno Haru Free PDF Library (libharu2, tambi\u00e9n conocida como libharu) 2.0.7 y anteriores permite a atacantes dependientes de contexto provocar una denegaci\u00f3n de servicio (ca\u00edda de la aplicaci\u00f3n) mediante ciertos argumentos que producen una gran cantidad de informaci\u00f3n PDF, como ha sido demostrado por un c\u00edrculo relleno."}], "lastModified": "2024-11-21T00:21:59.620", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFF3BB92-218B-4F05-A58A-C4873B675E95"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "650CE745-75DA-49A5-AD26-E8A5C27D2284"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF02B8E6-5D2C-42DD-B0DA-51617CDAE7C7"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F61B8EB-37BF-4E45-903C-C25DD1100FAC"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C1974B3-3902-4C53-B6EF-D85B8BC815C1"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "419260A7-5934-4FF1-9A60-6B7FEDEE8D3D"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1052571-E29C-482F-8512-7F7A448A7274"}, {"criteria": "cpe:2.3:a:takeshi_kanno:haru_free_pdf_library:2.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02D21F87-42A4-45AF-9A39-9A59631F8824"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}