5 - CVE-2006-3790

Executive Summary

Informations
Name	CVE-2006-3790	First vendor Publication	2006-07-24
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3790

CAPEC : Common Attack Pattern Enumeration & Classification

Id	Name
CAPEC-3	Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7	Blind SQL Injection
CAPEC-8	Buffer Overflow in an API Call
CAPEC-9	Buffer Overflow in Local Command-Line Utilities
CAPEC-10	Buffer Overflow via Environment Variables
CAPEC-13	Subverting Environment Variable Values
CAPEC-14	Client-side Injection-induced Buffer Overflow
CAPEC-18	Embedding Scripts in Nonscript Elements
CAPEC-22	Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24	Filter Failure through Buffer Overflow
CAPEC-28	Fuzzing
CAPEC-31	Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32	Embedding Scripts in HTTP Query Strings
CAPEC-42	MIME Conversion
CAPEC-43	Exploiting Multiple Input Interpretation Layers
CAPEC-45	Buffer Overflow via Symbolic Links
CAPEC-46	Overflow Variables and Tags
CAPEC-47	Buffer Overflow via Parameter Expansion
CAPEC-52	Embedding NULL Bytes
CAPEC-53	Postfix, Null Terminate, and Backslash
CAPEC-63	Simple Script Injection
CAPEC-64	Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66	SQL Injection
CAPEC-67	String Format Overflow in syslog()
CAPEC-71	Using Unicode Encoding to Bypass Validation Logic
CAPEC-72	URL Encoding
CAPEC-73	User-Controlled Filename
CAPEC-78	Using Escaped Slashes in Alternate Encoding
CAPEC-79	Using Slashes in Alternate Encoding
CAPEC-80	Using UTF-8 Encoding to Bypass Validation Logic
CAPEC-81	Web Logs Tampering
CAPEC-83	XPath Injection
CAPEC-85	Client Network Footprinting (using AJAX/XSS)
CAPEC-86	Embedding Script (XSS ) in HTTP Headers
CAPEC-88	OS Command Injection
CAPEC-91	XSS in IMG Tags
CAPEC-99	XML Parser Attack
CAPEC-101	Server Side Include (SSI) Injection
CAPEC-104	Cross Zone Scripting
CAPEC-106	Cross Site Scripting through Log Files
CAPEC-108	Command Line Execution through SQL Injection
CAPEC-109	Object Relational Mapping Injection
CAPEC-110	SQL Injection through SOAP Parameter Tampering
CAPEC-171	Variable Manipulation

CWE : Common Weakness Enumeration

%	Id	Name

OpenVAS Exploits

Date	Description
2008-09-24	Name : Gentoo Security Advisory GLSA 200702-10 (ufo2000) File : nvt/glsa_200702_10.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
27342	UFO2000 server_transport.cpp decode_stringmap Function Memory Corruption Remo...

Nessus® Vulnerability Scanner

Date	Description
2007-02-27	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200702-10.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://aluigi.altervista.org/adv/ufo2ko-adv.txt
http://secunia.com/advisories/21091
http://secunia.com/advisories/24297
http://securityreason.com/securityalert/1259
http://securitytracker.com/id?1016503
http://svn.sourceforge.net/viewcvs.cgi/ufo2000/trunk/src/server_transport.cpp...
http://www.gentoo.org/security/en/glsa/glsa-200702-10.xml
http://www.securityfocus.com/archive/1/440293/100/0/threaded
http://www.securityfocus.com/bid/19035
http://www.vupen.com/english/advisories/2006/2837
https://exchange.xforce.ibmcloud.com/vulnerabilities/27800

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:19:56	Multiple Updates
2024-11-28 12:09:34	Multiple Updates
2020-05-23 00:18:08	Multiple Updates
2018-10-18 00:19:36	Multiple Updates
2017-07-20 09:23:46	Multiple Updates
2016-04-26 14:53:43	Multiple Updates
2014-02-17 10:36:38	Multiple Updates
2013-05-11 11:04:13	Multiple Updates

Type	Count
Capec ID(s)	44
CWE ID(s)	1
Sources(s)	11
osvdb(s)	1
Openvas Exploit(s)	1
Nessus® Exploit(s)	1

5 - CVE-2006-3790

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CAPEC : Common Attack Pattern Enumeration & Classification

CWE : Common Weakness Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU