Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2006-6397 | First vendor Publication | 2006-12-07 |
Vendor | Cve | Last vendor Modification | 2024-04-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:M/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 4.4 | Attack Range | Local |
Cvss Impact Score | 6.4 | Attack Complexity | Medium |
Cvss Expoit Score | 3.4 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner is not setuid, an exploit would not cross privilege boundaries in normal operations. This issue is not a vulnerability |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6397 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 1 | |
Os | 1 | |
Os | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
31954 | Multiple BSD banner Local Overflow A local overflow has been repoted in the 'banner' program on multiple distributions of BSD. The program fails to validate input resulting in a buffer overflow. With a specially crafted request, an attacker can cause the execution of arbitrary code. However, the 'banner' program is not SUID by default and would not allow elevated privileges unless the system was misconfigured to give SUID privileges to the program. |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-04-11 09:28:46 |
|
2024-03-21 09:28:48 |
|
2023-11-07 21:48:00 |
|
2021-05-04 12:04:58 |
|
2021-04-22 01:05:33 |
|
2020-05-23 00:18:48 |
|
2018-10-18 00:19:49 |
|
2013-05-11 11:16:13 |
|