2.6
CVE-2006-2366
- EPSS 1.21%
- Veröffentlicht 15.05.2006 16:06:00
- Zuletzt bearbeitet 16.06.2026 22:24:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginircp_io.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.21% | 0.645 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.6 | 4.9 | 2.9 |
AV:N/AC:H/Au:N/C:N/I:P/A:N
|
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=366484
http://secunia.com/advisories/20302
http://www.securityfocus.com/bid/17921
https://exchange.xforce.ibmcloud.com/vulnerabilities/26686