CVE-2006-4319

EPSS 0.07%
Veröffentlicht 24.08.2006 01:04:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Buffer overflow in the format command in Solaris 8, 9, and 10 allows local users with access to format (such as the "File System Management" RBAC profile) to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2006-4307.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sun ≫ Solaris Version8.0 Editionsparc

Sun ≫ Solaris Version8.0 Editionx86

Sun ≫ Solaris Version8.0 Updatebeta

Sun ≫ Solaris Version9.0 Editionsparc

Sun ≫ Solaris Version9.0 Editionx86

Sun ≫ Solaris Version9.0 Updatex86_update_2

Sun ≫ Solaris Version10.0 Edition64_bit

Sun ≫ Solaris Version10.0 Editionsparc

Sun ≫ Solaris Version10.0 Editionx86

Sun ≫ Solaris Version10.0 Updatehw2

Sun ≫ Sunos Version5.8

Sun ≫ Sunos Version5.9

Sun ≫ Sunos Version5.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.186

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm

http://secunia.com/advisories/21581

Patch

Vendor Advisory

http://secunia.com/advisories/22295

http://www.vupen.com/english/advisories/2006/3355

http://securitytracker.com/id?1016727

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102519-1

Patch

http://www.securityfocus.com/bid/19657

https://exchange.xforce.ibmcloud.com/vulnerabilities/28519

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2164

https://nvd.nist.gov/vuln/detail/CVE-2006-4319

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4319

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4319

EUVD