CVE-2006-4319

EPSS 0.07%
Published 24.08.2006 01:04:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the format command in Solaris 8, 9, and 10 allows local users with access to format (such as the "File System Management" RBAC profile) to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2006-4307.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Sun ≫ Solaris Version8.0 Editionsparc

Sun ≫ Solaris Version8.0 Editionx86

Sun ≫ Solaris Version8.0 Updatebeta

Sun ≫ Solaris Version9.0 Editionsparc

Sun ≫ Solaris Version9.0 Editionx86

Sun ≫ Solaris Version9.0 Updatex86_update_2

Sun ≫ Solaris Version10.0 Edition64_bit

Sun ≫ Solaris Version10.0 Editionsparc

Sun ≫ Solaris Version10.0 Editionx86

Sun ≫ Solaris Version10.0 Updatehw2

Sun ≫ Sunos Version5.8

Sun ≫ Sunos Version5.9

Sun ≫ Sunos Version5.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.186

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm

http://secunia.com/advisories/21581

Patch

Vendor Advisory

http://secunia.com/advisories/22295

http://www.vupen.com/english/advisories/2006/3355

http://securitytracker.com/id?1016727

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102519-1

Patch

http://www.securityfocus.com/bid/19657

https://exchange.xforce.ibmcloud.com/vulnerabilities/28519

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2164

https://nvd.nist.gov/vuln/detail/CVE-2006-4319

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4319

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4319

EUVD