4.6

CVE-2006-0489

EPSS 0.46%
Veröffentlicht 01.02.2006 02:02:00
Zuletzt bearbeitet 16.06.2026 22:20:42
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Buffer overflow in the font command of mIRC, probably 6.16, allows local users to execute arbitrary code via a long string. NOTE: the original researcher claims that issue has been disputed by the vendor, and that the vendor stated "as far as I can tell, this is neither an exploit nor a vulnerability.  The above report describes a local bug in mIRC."  It could be that this is only exploitable by the user of the application, and thus would not cross privilege boundaries unless under an otherwise restrictive environment such as a kiosk

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Khaled Mardam-bey ≫ Mirc Version6.16

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.46%	0.365

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://securityreason.com/securityalert/383

http://trout.snt.utwente.nl/ubbthreads/showflat.php?Cat=0&Board=bugreports&Number=118751

http://www.osvdb.org/22942

http://www.securiteam.com/windowsntfocus/5IP080AHPQ.html

http://www.securityfocus.com/archive/1/423192/100/0/threaded

http://www.securityfocus.com/archive/1/423758/100/0/threaded

https://nvd.nist.gov/vuln/detail/CVE-2006-0489

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0489

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0489

EUVD