7.6

CVE-2006-2838

Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors.  NOTE: By default, the connections are only allowed from the local host.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
F-secureF-secure Anti-virus Version6.40 Editionms_exchange
F-secureInternet Gatekeeper Version6.4
F-secureInternet Gatekeeper Version6.41
F-secureInternet Gatekeeper Version6.42
F-secureInternet Gatekeeper Version6.50
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.69% 0.921
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.6 4.9 10
AV:N/AC:H/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/20407
Patch
Vendor Advisory
http://securitytracker.com/id?1016196
http://securitytracker.com/id?1016197
Patch
http://www.f-secure.com/security/fsc-2006-3.shtml
Patch
http://www.vupen.com/english/advisories/2006/2076
https://exchange.xforce.ibmcloud.com/vulnerabilities/26799