7.5

CVE-2006-3223

Format string vulnerability in CA Integrated Threat Management (ITM), eTrust Antivirus (eAV), and eTrust PestPatrol (ePP) r8 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a scan job with format strings in the description field.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.54% 0.929
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047423.html
http://secunia.com/advisories/20856
http://securitytracker.com/id?1016391
http://www.osvdb.org/26654
http://www.securityfocus.com/archive/1/438503/100/0/threaded
http://www.securityfocus.com/archive/1/438582/100/0/threaded
http://www.securityfocus.com/bid/18689
http://www.vupen.com/english/advisories/2006/2565
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34325
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/27374