CVE-2006-2007

EPSS 9.46%
Veröffentlicht 25.04.2006 12:50:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Heap-based buffer overflow in Winny 2.0 b7.1 and earlier allows remote attackers to execute arbitrary code via long strings to certain commands sent to the file transfer port.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Winny ≫ Winny Version2.0b5.7

Winny ≫ Winny Version2.0b7.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	9.46%	0.92

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://jvn.jp/jp/JVN%2374294680/index.html

http://secunia.com/advisories/19795

Vendor Advisory

http://www.eeye.com/html/research/advisories/AD20060421.html

Vendor Advisory

http://www.kb.cert.org/vuls/id/167033

US Government Resource

http://www.osvdb.org/24883

http://www.securityfocus.com/bid/17666

http://www.vupen.com/english/advisories/2006/1486

https://exchange.xforce.ibmcloud.com/vulnerabilities/25986

https://nvd.nist.gov/vuln/detail/CVE-2006-2007

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-2007

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-2007

EUVD