4.6

CVE-2006-0489

EPSS 0.14%
Veröffentlicht 01.02.2006 02:02:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated "as far as I can tell, this is neither an exploit nor a vulnerability.  The above report describes a local bug in mIRC."  It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Khaled Mardam-bey ≫ Mirc Version6.16

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.14%	0.342

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://securityreason.com/securityalert/383

http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0&Board=bugreports&Number=118751

http://www.osvdb.org/22942

http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html

http://www.securityfocus.com/archive/1/423192/100/0/threaded

http://www.securityfocus.com/archive/1/423758/100/0/threaded

https://nvd.nist.gov/vuln/detail/CVE-2006-0489

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0489

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0489

EUVD