CVE-2006-0331 - Buffer overflow in Change passwd 3.1 (chpasswd) SquirrelMail plugin allows local users to execute ar

CVE-2006-0331

Summary

Buffer overflow in Change passwd 3.1 (chpasswd) SquirrelMail plugin allows local users to execute arbitrary code via long command line arguments.

References

Vulnerable Configurations

cpe:2.3:a:thiago_melo_de_paula:change_passwd:3.1:*:*:*:*:*:*:*
cpe:2.3:a:thiago_melo_de_paula:change_passwd:3.1:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bugtraq	20060119 Change passwd 3.1 (SquirrelMail plugin )
misc	http://www.squirrelmail.org/plugin_view.php?id=117
sreason	363
xf	changepassword-changepasswd-bo(24258)

Last major update

19-10-2018 - 15:44

Published

21-01-2006 - 00:03

Last modified

19-10-2018 - 15:44