4.6

CVE-2006-4655

Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ScoUnixware Version7.1.3
SunSolaris Version8.0 Editionsparc
SunSolaris Version8.0 Editionx86
SunSolaris Version9.0 Editionsparc
SunSolaris Version9.0 Editionx86
SunSolaris Version10.0 Editionsparc
SunSolaris Version10.0 Editionx86
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.87% 0.542
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/21815
http://secunia.com/advisories/21845
http://secunia.com/advisories/21856
http://secunia.com/advisories/21993
http://securityreason.com/securityalert/1545
http://securitytracker.com/id?1016806
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102570-1
http://support.avaya.com/elmodocs2/security/ASA-2006-195.htm
http://www.risesecurity.org/advisory/RISE-2006001.txt
Vendor Advisory
http://www.securityfocus.com/archive/1/445579/100/0/threaded
http://www.securityfocus.com/bid/19905
http://www.vupen.com/english/advisories/2006/3525
http://www.vupen.com/english/advisories/2006/3529
https://exchange.xforce.ibmcloud.com/vulnerabilities/28820
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1798