2.1 - CVE-2006-1780

Executive Summary

Informations
Name	CVE-2006-1780	First vendor Publication	2006-04-13
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	2.1	Attack Range	Local
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	3.9	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Bourne shell (sh) in Solaris 8, 9, and 10 allows local users to cause a denial of service (sh crash) via an unspecified attack vector that causes sh processes to crash during creation of temporary files.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1780

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:881

Oval ID:	oval:org.mitre.oval:def:881
Title:	Bourne Shell Local-DoS Vulnerability
Description:	The Bourne shell (sh) in Solaris 8, 9, and 10 allows local users to cause a denial of service (sh crash) via an unspecified attack vector that causes sh processes to crash during creation of temporary files.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2006-1780	Version:	2
Platform(s):	Sun Solaris 8 Sun Solaris 9 Sun Solaris 10	Product(s):
Definition Synopsis:
Solaris 8 (SPARC) meets Sun Alert ID 102282 criteria. Solaris 8 Installed AND sparc architecture AND NOT Patch 109324-09 or later is installed OR Solaris 9 (SPARC) meets Sun Alert ID 102282 criteria. Solaris 9 Installed AND sparc architecture AND NOT Patch 118535-03 or later is installed OR Solaris 10 (SPARC) meets Sun Alert ID 102282 criteria. Solaris 10 Installed AND sparc architecture AND NOT Patch 121004-01 or later is installed OR Solaris 8 (x86) meets Sun Alert ID 102282 criteria. Solaris 8 Installed AND ix86 architecture AND NOT Patch 109325-09 or later is installed OR Solaris 9 (x86) meets Sun Alert ID 102282 criteria. Solaris 9 Installed AND ix86 architecture AND NOT Patch 118536-03 or later is installed OR Solaris 10 (x86) meets Sun Alert ID 102282 criteria. Solaris 10 Installed AND ix86 architecture AND NOT Patch 121005-01 or later is installed

CPE : Common Platform Enumeration

Type	Description	Count
Os	Sun Solaris cpe:2.3:o:sun:solaris:10.0::sparc::::: cpe:2.3:o:sun:solaris:9.0::sparc:::::	2
Os	Sun Sunos cpe:2.3:o:sun:sunos:5.8:::::::*	1

Open Source Vulnerability Database (OSVDB)

Id	Description
24553	Solaris sh Temporary File Creation Local DoS

Nessus® Vulnerability Scanner

Date	Description
2006-04-21	Name : The remote host is missing Sun Security Patch number 118535-06 File : solaris9_118535.nasl - Type : ACT_GATHER_INFO
2006-04-21	Name : The remote host is missing Sun Security Patch number 118536-06 File : solaris9_x86_118536.nasl - Type : ACT_GATHER_INFO
2004-07-12	Name : The remote host is missing Sun Security Patch number 109324-10 File : solaris8_109324.nasl - Type : ACT_GATHER_INFO
2004-07-12	Name : The remote host is missing Sun Security Patch number 109325-10 File : solaris8_x86_109325.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://secunia.com/advisories/19627
http://secunia.com/advisories/21493
http://securitytracker.com/id?1015902
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102282-1
http://support.avaya.com/elmodocs2/security/ASA-2006-122.htm
http://www.securityfocus.com/bid/17478
http://www.vupen.com/english/advisories/2006/1333
https://exchange.xforce.ibmcloud.com/vulnerabilities/25744
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:20:45	Multiple Updates
2024-11-28 12:08:43	Multiple Updates
2021-05-04 12:03:55	Multiple Updates
2021-04-22 01:04:28	Multiple Updates
2020-05-23 00:17:39	Multiple Updates
2018-10-31 00:19:45	Multiple Updates
2017-10-11 09:23:40	Multiple Updates
2017-07-20 09:23:30	Multiple Updates
2016-06-28 15:43:38	Multiple Updates
2016-04-26 14:30:22	Multiple Updates
2014-02-17 10:35:26	Multiple Updates
2013-05-11 10:54:09	Multiple Updates

Type	Count
Oval ID(s)	1
CPE ID(s)	3
Sources(s)	9
osvdb(s)	1
Nessus® Exploit(s)	4

2.1 - CVE-2006-1780

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU