cvelistv5 - cve-2006-6481

CVE-2006-6481 (GCVE-0-2006-6481)

Vulnerability from cvelistv5

Published

2006-12-12 01:00

Modified

2024-08-07 20:26

Severity ?

CWE

Summary

Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.

References

URL

Tags

cve@mitre.org	http://docs.info.apple.com/article.html?artnum=307562
cve@mitre.org	http://kolab.org/security/kolab-vendor-notice-14.txt
cve@mitre.org	http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
cve@mitre.org	http://osvdb.org/31283
cve@mitre.org	http://secunia.com/advisories/23347
cve@mitre.org	http://secunia.com/advisories/23362
cve@mitre.org	http://secunia.com/advisories/23379
cve@mitre.org	http://secunia.com/advisories/23404
cve@mitre.org	http://secunia.com/advisories/23411
cve@mitre.org	http://secunia.com/advisories/23417
cve@mitre.org	http://secunia.com/advisories/23460
cve@mitre.org	http://secunia.com/advisories/29420
cve@mitre.org	http://security.gentoo.org/glsa/glsa-200612-18.xml
cve@mitre.org	http://www.debian.org/security/2006/dsa-1238
cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2006:230
cve@mitre.org	http://www.novell.com/linux/security/advisories/2006_78_clamav.html
cve@mitre.org	http://www.quantenblog.net/security/virus-scanner-bypass	Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/21609
cve@mitre.org	http://www.trustix.org/errata/2006/0072/
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4948
cve@mitre.org	http://www.vupen.com/english/advisories/2006/5113
cve@mitre.org	http://www.vupen.com/english/advisories/2008/0924/references
af854a3a-2127-422b-91ae-364da2661108	http://docs.info.apple.com/article.html?artnum=307562
af854a3a-2127-422b-91ae-364da2661108	http://kolab.org/security/kolab-vendor-notice-14.txt
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/31283
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23347
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23362
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23379
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23404
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23411
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23417
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23460
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/29420
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200612-18.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1238
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2006:230
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2006_78_clamav.html
af854a3a-2127-422b-91ae-364da2661108	http://www.quantenblog.net/security/virus-scanner-bypass	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/21609
af854a3a-2127-422b-91ae-364da2661108	http://www.trustix.org/errata/2006/0072/
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4948
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/5113
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/0924/references

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T20:26:46.519Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "31283",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/31283"
          },
          {
            "name": "21609",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/21609"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
          },
          {
            "name": "23460",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23460"
          },
          {
            "name": "23347",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23347"
          },
          {
            "name": "23404",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23404"
          },
          {
            "name": "ADV-2006-4948",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4948"
          },
          {
            "name": "ADV-2008-0924",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/0924/references"
          },
          {
            "name": "DSA-1238",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2006/dsa-1238"
          },
          {
            "name": "23417",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23417"
          },
          {
            "name": "GLSA-200612-18",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
          },
          {
            "name": "2006-0072",
            "tags": [
              "vendor-advisory",
              "x_refsource_TRUSTIX",
              "x_transferred"
            ],
            "url": "http://www.trustix.org/errata/2006/0072/"
          },
          {
            "name": "SUSE-SA:2006:078",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
          },
          {
            "name": "29420",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/29420"
          },
          {
            "name": "APPLE-SA-2008-03-18",
            "tags": [
              "vendor-advisory",
              "x_refsource_APPLE",
              "x_transferred"
            ],
            "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
          },
          {
            "name": "23379",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23379"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://docs.info.apple.com/article.html?artnum=307562"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
          },
          {
            "name": "MDKSA-2006:230",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
          },
          {
            "name": "ADV-2006-5113",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/5113"
          },
          {
            "name": "23411",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23411"
          },
          {
            "name": "23362",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23362"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-12-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2006-12-16T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "31283",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/31283"
        },
        {
          "name": "21609",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/21609"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
        },
        {
          "name": "23460",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23460"
        },
        {
          "name": "23347",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23347"
        },
        {
          "name": "23404",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23404"
        },
        {
          "name": "ADV-2006-4948",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4948"
        },
        {
          "name": "ADV-2008-0924",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/0924/references"
        },
        {
          "name": "DSA-1238",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2006/dsa-1238"
        },
        {
          "name": "23417",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23417"
        },
        {
          "name": "GLSA-200612-18",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
        },
        {
          "name": "2006-0072",
          "tags": [
            "vendor-advisory",
            "x_refsource_TRUSTIX"
          ],
          "url": "http://www.trustix.org/errata/2006/0072/"
        },
        {
          "name": "SUSE-SA:2006:078",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
        },
        {
          "name": "29420",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/29420"
        },
        {
          "name": "APPLE-SA-2008-03-18",
          "tags": [
            "vendor-advisory",
            "x_refsource_APPLE"
          ],
          "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
        },
        {
          "name": "23379",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23379"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://docs.info.apple.com/article.html?artnum=307562"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
        },
        {
          "name": "MDKSA-2006:230",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
        },
        {
          "name": "ADV-2006-5113",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/5113"
        },
        {
          "name": "23411",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23411"
        },
        {
          "name": "23362",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23362"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-6481",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "31283",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/31283"
            },
            {
              "name": "21609",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/21609"
            },
            {
              "name": "http://kolab.org/security/kolab-vendor-notice-14.txt",
              "refsource": "CONFIRM",
              "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
            },
            {
              "name": "23460",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23460"
            },
            {
              "name": "23347",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23347"
            },
            {
              "name": "23404",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23404"
            },
            {
              "name": "ADV-2006-4948",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4948"
            },
            {
              "name": "ADV-2008-0924",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/0924/references"
            },
            {
              "name": "DSA-1238",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2006/dsa-1238"
            },
            {
              "name": "23417",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23417"
            },
            {
              "name": "GLSA-200612-18",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
            },
            {
              "name": "2006-0072",
              "refsource": "TRUSTIX",
              "url": "http://www.trustix.org/errata/2006/0072/"
            },
            {
              "name": "SUSE-SA:2006:078",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
            },
            {
              "name": "29420",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/29420"
            },
            {
              "name": "APPLE-SA-2008-03-18",
              "refsource": "APPLE",
              "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
            },
            {
              "name": "23379",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23379"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=307562",
              "refsource": "CONFIRM",
              "url": "http://docs.info.apple.com/article.html?artnum=307562"
            },
            {
              "name": "http://www.quantenblog.net/security/virus-scanner-bypass",
              "refsource": "MISC",
              "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
            },
            {
              "name": "MDKSA-2006:230",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
            },
            {
              "name": "ADV-2006-5113",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/5113"
            },
            {
              "name": "23411",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23411"
            },
            {
              "name": "23362",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23362"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-6481",
    "datePublished": "2006-12-12T01:00:00",
    "dateReserved": "2006-12-11T00:00:00",
    "dateUpdated": "2024-08-07T20:26:46.519Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-6481\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-12-12T01:28:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.\"},{\"lang\":\"es\",\"value\":\"Clam AntiVirus (ClamAV) 0.88.6 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (desbordamiento de pila y ca\u00edda de aplicaci\u00f3n) encapsulando un documento con muchas capas de contenido multiparte/mezclado (multipart/mixed), una vulnerabilidad distinta de CVE-2006-5874 y CVE-2006-6406.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"557C5437-4B40-4E89-A23D-96B95829281D\"}]}]}],\"references\":[{\"url\":\"http://docs.info.apple.com/article.html?artnum=307562\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://kolab.org/security/kolab-vendor-notice-14.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/31283\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23347\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23362\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23379\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23404\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23411\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23417\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23460\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/29420\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200612-18.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1238\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2006:230\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2006_78_clamav.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.quantenblog.net/security/virus-scanner-bypass\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/21609\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.trustix.org/errata/2006/0072/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/4948\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/5113\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/0924/references\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://docs.info.apple.com/article.html?artnum=307562\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://kolab.org/security/kolab-vendor-notice-14.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/31283\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23347\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23362\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23379\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23404\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23411\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23417\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23460\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/29420\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200612-18.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1238\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2006:230\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2006_78_clamav.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.quantenblog.net/security/virus-scanner-bypass\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/21609\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.trustix.org/errata/2006/0072/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/4948\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/5113\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/0924/references\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

fkie_cve-2006-6481

Vulnerability from fkie_nvd

Published

2006-12-12 01:28

Modified

2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://docs.info.apple.com/article.html?artnum=307562
cve@mitre.org	http://kolab.org/security/kolab-vendor-notice-14.txt
cve@mitre.org	http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
cve@mitre.org	http://osvdb.org/31283
cve@mitre.org	http://secunia.com/advisories/23347
cve@mitre.org	http://secunia.com/advisories/23362
cve@mitre.org	http://secunia.com/advisories/23379
cve@mitre.org	http://secunia.com/advisories/23404
cve@mitre.org	http://secunia.com/advisories/23411
cve@mitre.org	http://secunia.com/advisories/23417
cve@mitre.org	http://secunia.com/advisories/23460
cve@mitre.org	http://secunia.com/advisories/29420
cve@mitre.org	http://security.gentoo.org/glsa/glsa-200612-18.xml
cve@mitre.org	http://www.debian.org/security/2006/dsa-1238
cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2006:230
cve@mitre.org	http://www.novell.com/linux/security/advisories/2006_78_clamav.html
cve@mitre.org	http://www.quantenblog.net/security/virus-scanner-bypass	Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/21609
cve@mitre.org	http://www.trustix.org/errata/2006/0072/
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4948
cve@mitre.org	http://www.vupen.com/english/advisories/2006/5113
cve@mitre.org	http://www.vupen.com/english/advisories/2008/0924/references
af854a3a-2127-422b-91ae-364da2661108	http://docs.info.apple.com/article.html?artnum=307562
af854a3a-2127-422b-91ae-364da2661108	http://kolab.org/security/kolab-vendor-notice-14.txt
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/31283
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23347
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23362
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23379
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23404
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23411
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23417
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23460
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/29420
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200612-18.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1238
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2006:230
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2006_78_clamav.html
af854a3a-2127-422b-91ae-364da2661108	http://www.quantenblog.net/security/virus-scanner-bypass	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/21609
af854a3a-2127-422b-91ae-364da2661108	http://www.trustix.org/errata/2006/0072/
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4948
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/5113
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/0924/references

Impacted products

	Vendor	Product	Version
	clam_anti-virus	clamav	0.88.6

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "557C5437-4B40-4E89-A23D-96B95829281D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406."
    },
    {
      "lang": "es",
      "value": "Clam AntiVirus (ClamAV) 0.88.6 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (desbordamiento de pila y ca\u00edda de aplicaci\u00f3n) encapsulando un documento con muchas capas de contenido multiparte/mezclado (multipart/mixed), una vulnerabilidad distinta de CVE-2006-5874 y CVE-2006-6406."
    }
  ],
  "id": "CVE-2006-6481",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-12-12T01:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://docs.info.apple.com/article.html?artnum=307562"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/31283"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23347"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23362"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23379"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23404"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23411"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23417"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23460"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/29420"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2006/dsa-1238"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/21609"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.trustix.org/errata/2006/0072/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4948"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/5113"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/0924/references"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://docs.info.apple.com/article.html?artnum=307562"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/31283"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23347"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23362"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23379"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23404"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23411"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23417"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23460"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/29420"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2006/dsa-1238"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/21609"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.trustix.org/errata/2006/0072/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4948"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/5113"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/0924/references"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ghsa-qpvm-hm98-hw68

Vulnerability from github

Published

2022-05-01 07:38

Modified

2025-04-09 03:34

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-6481"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-12-12T01:28:00Z",
    "severity": "MODERATE"
  },
  "details": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.",
  "id": "GHSA-qpvm-hm98-hw68",
  "modified": "2025-04-09T03:34:38Z",
  "published": "2022-05-01T07:38:28Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-6481"
    },
    {
      "type": "WEB",
      "url": "http://docs.info.apple.com/article.html?artnum=307562"
    },
    {
      "type": "WEB",
      "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/31283"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23347"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23362"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23379"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23404"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23411"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23417"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23460"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/29420"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2006/dsa-1238"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
    },
    {
      "type": "WEB",
      "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/21609"
    },
    {
      "type": "WEB",
      "url": "http://www.trustix.org/errata/2006/0072"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4948"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/5113"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2008/0924/references"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2008-AVI-148

Vulnerability from certfr_avis

None

Description

De multiples vulnérabilités ont été découvertes dans le système d'exploitation Apple Mac OS X. L'exploitation de ces vulnérabilités permet à un individu malveillant diverses actions dont exécuter du code arbitaire à distance, effectuer un déni de service, contourner la politique de sécurité, élever ses privilèges et effectuer une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité Apple 307562 pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Apple	N/A	Apple Mac Os X version 10.4.11 et antérieures ;
	Apple	N/A	Apple Mac Os X version 10.5.2 et antérieures.

References

Title

Publication Time

Tags

Bulletin de sécurité Apple 307562 du 18 mars 2008

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Apple Mac Os X version 10.4.11 et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "Apple Mac Os X version 10.5.2 et ant\u00e9rieures.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le syst\u00e8me\nd\u0027exploitation Apple Mac OS X. L\u0027exploitation de ces vuln\u00e9rabilit\u00e9s\npermet \u00e0 un individu malveillant diverses actions dont ex\u00e9cuter du code\narbitaire \u00e0 distance, effectuer un d\u00e9ni de service, contourner la\npolitique de s\u00e9curit\u00e9, \u00e9lever ses privil\u00e8ges et effectuer une atteinte \u00e0\nla confidentialit\u00e9 des donn\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 Apple 307562 pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-0063",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0063"
    },
    {
      "name": "CVE-2008-0060",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0060"
    },
    {
      "name": "CVE-2007-3847",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-3847"
    },
    {
      "name": "CVE-2007-6109",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6109"
    },
    {
      "name": "CVE-2007-1661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1661"
    },
    {
      "name": "CVE-2008-0882",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0882"
    },
    {
      "name": "CVE-2007-6336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6336"
    },
    {
      "name": "CVE-2007-2799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-2799"
    },
    {
      "name": "CVE-2006-3747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-3747"
    },
    {
      "name": "CVE-2007-5000",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5000"
    },
    {
      "name": "CVE-2008-1089",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-1089"
    },
    {
      "name": "CVE-2008-0005",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0005"
    },
    {
      "name": "CVE-2007-4768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4768"
    },
    {
      "name": "CVE-2008-0059",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0059"
    },
    {
      "name": "CVE-2008-1000",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-1000"
    },
    {
      "name": "CVE-2007-1660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1660"
    },
    {
      "name": "CVE-2007-4568",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4568"
    },
    {
      "name": "CVE-2007-3378",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-3378"
    },
    {
      "name": "CVE-2008-0052",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0052"
    },
    {
      "name": "CVE-2008-0990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0990"
    },
    {
      "name": "CVE-2008-0995",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0995"
    },
    {
      "name": "CVE-2007-0898",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0898"
    },
    {
      "name": "CVE-2007-5266",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5266"
    },
    {
      "name": "CVE-2008-0055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0055"
    },
    {
      "name": "CVE-2007-1997",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1997"
    },
    {
      "name": "CVE-2007-1659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1659"
    },
    {
      "name": "CVE-2007-6337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6337"
    },
    {
      "name": "CVE-2008-0044",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0044"
    },
    {
      "name": "CVE-2008-0045",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0045"
    },
    {
      "name": "CVE-2007-5971",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5971"
    },
    {
      "name": "CVE-2008-0046",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0046"
    },
    {
      "name": "CVE-2008-0047",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0047"
    },
    {
      "name": "CVE-2007-6335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6335"
    },
    {
      "name": "CVE-2007-5267",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5267"
    },
    {
      "name": "CVE-2007-3725",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-3725"
    },
    {
      "name": "CVE-2008-0054",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0054"
    },
    {
      "name": "CVE-2008-0996",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0996"
    },
    {
      "name": "CVE-2007-5268",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5268"
    },
    {
      "name": "CVE-2007-6203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6203"
    },
    {
      "name": "CVE-2008-0051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0051"
    },
    {
      "name": "CVE-2007-3799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-3799"
    },
    {
      "name": "CVE-2008-0048",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0048"
    },
    {
      "name": "CVE-2007-1662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1662"
    },
    {
      "name": "CVE-2006-3334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-3334"
    },
    {
      "name": "CVE-2008-0998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0998"
    },
    {
      "name": "CVE-2007-0897",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0897"
    },
    {
      "name": "CVE-2008-0318",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0318"
    },
    {
      "name": "CVE-2007-6429",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6429"
    },
    {
      "name": "CVE-2007-4510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4510"
    },
    {
      "name": "CVE-2007-5269",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5269"
    },
    {
      "name": "CVE-2007-5795",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5795"
    },
    {
      "name": "CVE-2008-0006",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0006"
    },
    {
      "name": "CVE-2008-0062",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0062"
    },
    {
      "name": "CVE-2008-0728",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0728"
    },
    {
      "name": "CVE-2007-2445",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-2445"
    },
    {
      "name": "CVE-2008-0049",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0049"
    },
    {
      "name": "CVE-2007-1745",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1745"
    },
    {
      "name": "CVE-2007-6427",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6427"
    },
    {
      "name": "CVE-2008-0987",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0987"
    },
    {
      "name": "CVE-2008-0993",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0993"
    },
    {
      "name": "CVE-2008-0988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0988"
    },
    {
      "name": "CVE-2008-0056",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0056"
    },
    {
      "name": "CVE-2008-0992",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0992"
    },
    {
      "name": "CVE-2006-5793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-5793"
    },
    {
      "name": "CVE-2007-6428",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6428"
    },
    {
      "name": "CVE-2008-0989",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0989"
    },
    {
      "name": "CVE-2005-3352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3352"
    },
    {
      "name": "CVE-2008-0053",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0053"
    },
    {
      "name": "CVE-2007-4767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4767"
    },
    {
      "name": "CVE-2008-0050",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0050"
    },
    {
      "name": "CVE-2007-5958",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5958"
    },
    {
      "name": "CVE-2006-6481",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6481"
    },
    {
      "name": "CVE-2008-0994",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0994"
    },
    {
      "name": "CVE-2007-6421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6421"
    },
    {
      "name": "CVE-2008-0058",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0058"
    },
    {
      "name": "CVE-2007-4752",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4752"
    },
    {
      "name": "CVE-2008-0999",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0999"
    },
    {
      "name": "CVE-2007-4560",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4560"
    },
    {
      "name": "CVE-2007-4990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4990"
    },
    {
      "name": "CVE-2007-4766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4766"
    },
    {
      "name": "CVE-2007-6388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6388"
    },
    {
      "name": "CVE-2008-0596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-0596"
    },
    {
      "name": "CVE-2007-4887",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-4887"
    }
  ],
  "initial_release_date": "2008-03-19T00:00:00",
  "last_revision_date": "2008-03-19T00:00:00",
  "links": [],
  "reference": "CERTA-2008-AVI-148",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-03-19T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": null,
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Mac OS X",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple 307562 du 18 mars 2008",
      "url": "http://docs.info.apple.com/article.html?artnum=307562"
    }
  ]
}

CERTA-2006-AVI-553

Vulnerability from certfr_avis

ClamAV est un antivirus en ligne de commande pour les systèmes Unix.

Une vulnérabilité dans l'analyse des courriels à parties MIME imbriquées permet à un utilisateur malintentionné de provoquer un déni de service à distance.

Description

Le format MIME (RFC 2045 à 2049, RFC 2077) est une extension du format de courriel qui permet l'intégration des caractères autres que ceux de l'ASCII : caractères accentués, pièces jointes en binaire, messages chiffrés ou signés. Un message MIME peut contenir plusieurs parties (type MIME multipart), par exemple une pour le corps du courriel et une par pièce jointe. Chaque partie peut à son tour contenir plusieurs parties (imbrication).

Lorsque ClamAV analyse un courriel de type MIME multipart avec de nombreux niveaux d'imbrications, un débordement de mémoire provoque l'arrêt du programme. L'envoi d'un courriel spécialement construit permet à un utilisateur distant de provoquer un déni de service.

Solution

Passer à la version 0.88.7 (cf. section Documentation).

ClamAV 0.88.6 et versions antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

CVE-2006-6481	None	vendor-advisory
Site du projet clamav :	-	other
Bulletin de sécurité Gentoo GLSA-200612-18 du 18 décembre 2006 :	-	other
Bulletin de sécurité Mandriva MDKSA-2006:230 du 13 décembre 2006 :	-	other
Bulletin de sécurité SuSE SUSE-SA:2006:078 du 18 décembre 2006 :	-	other
Bulletin de sécurité Debian DSA-1238 du 17 décembre 2006 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cSPAN class=\"textit\"\u003eClamAV  0.88.6\u003c/SPAN\u003e et versions ant\u00e9rieures.",
  "content": "## Description\n\nLe format MIME (RFC 2045 \u00e0 2049, RFC 2077) est une extension du format\nde courriel qui permet l\u0027int\u00e9gration des caract\u00e8res autres que ceux de\nl\u0027ASCII : caract\u00e8res accentu\u00e9s, pi\u00e8ces jointes en binaire, messages\nchiffr\u00e9s ou sign\u00e9s. Un message MIME peut contenir plusieurs parties\n(type MIME multipart), par exemple une pour le corps du courriel et une\npar pi\u00e8ce jointe. Chaque partie peut \u00e0 son tour contenir plusieurs\nparties (imbrication).\n\nLorsque ClamAV analyse un courriel de type MIME multipart avec de\nnombreux niveaux d\u0027imbrications, un d\u00e9bordement de m\u00e9moire provoque\nl\u0027arr\u00eat du programme. L\u0027envoi d\u0027un courriel sp\u00e9cialement construit\npermet \u00e0 un utilisateur distant de provoquer un d\u00e9ni de service.\n\n## Solution\n\nPasser \u00e0 la version 0.88.7 (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-6481",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6481"
    }
  ],
  "initial_release_date": "2006-12-14T00:00:00",
  "last_revision_date": "2006-12-19T00:00:00",
  "links": [
    {
      "title": "Site du projet clamav :",
      "url": "http://www.clamav.net/stable.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200612-18 du 18 d\u00e9cembre    2006 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200612-18.xml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2006:230 du 13 d\u00e9cembre    2006 :",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2006:078 du 18 d\u00e9cembre    2006 :",
      "url": "http://lists.suse.com/archive/suse-security-announce/2006-Dec/0007.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-1238 du 17 d\u00e9cembre 2006 :",
      "url": "http://www.us.debian.org/security/2006/dsa-1238"
    }
  ],
  "reference": "CERTA-2006-AVI-553",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2006-12-14T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 Gentoo, SuSE, Debian et Mandriva.",
      "revision_date": "2006-12-19T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "\u003cspan class=\"textit\"\u003eClamAV\u003c/span\u003e est un antivirus en ligne de commande\npour les syst\u00e8mes Unix.\n\nUne vuln\u00e9rabilit\u00e9 dans l\u0027analyse des courriels \u00e0 parties MIME imbriqu\u00e9es\npermet \u00e0 un utilisateur malintentionn\u00e9 de provoquer un d\u00e9ni de service \u00e0\ndistance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 de ClamAV",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "CVE-2006-6481",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6481"
    }
  ]
}

gsd-2006-6481

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2006-6481

Aliases

CVE-2006-6481

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-6481",
    "description": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.",
    "id": "GSD-2006-6481",
    "references": [
      "https://www.suse.com/security/cve/CVE-2006-6481.html",
      "https://www.debian.org/security/2006/dsa-1238"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-6481"
      ],
      "details": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.",
      "id": "GSD-2006-6481",
      "modified": "2023-12-13T01:19:54.090125Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-6481",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "31283",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/31283"
          },
          {
            "name": "21609",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/21609"
          },
          {
            "name": "http://kolab.org/security/kolab-vendor-notice-14.txt",
            "refsource": "CONFIRM",
            "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
          },
          {
            "name": "23460",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23460"
          },
          {
            "name": "23347",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23347"
          },
          {
            "name": "23404",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23404"
          },
          {
            "name": "ADV-2006-4948",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4948"
          },
          {
            "name": "ADV-2008-0924",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2008/0924/references"
          },
          {
            "name": "DSA-1238",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2006/dsa-1238"
          },
          {
            "name": "23417",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23417"
          },
          {
            "name": "GLSA-200612-18",
            "refsource": "GENTOO",
            "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
          },
          {
            "name": "2006-0072",
            "refsource": "TRUSTIX",
            "url": "http://www.trustix.org/errata/2006/0072/"
          },
          {
            "name": "SUSE-SA:2006:078",
            "refsource": "SUSE",
            "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
          },
          {
            "name": "29420",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/29420"
          },
          {
            "name": "APPLE-SA-2008-03-18",
            "refsource": "APPLE",
            "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
          },
          {
            "name": "23379",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23379"
          },
          {
            "name": "http://docs.info.apple.com/article.html?artnum=307562",
            "refsource": "CONFIRM",
            "url": "http://docs.info.apple.com/article.html?artnum=307562"
          },
          {
            "name": "http://www.quantenblog.net/security/virus-scanner-bypass",
            "refsource": "MISC",
            "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
          },
          {
            "name": "MDKSA-2006:230",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
          },
          {
            "name": "ADV-2006-5113",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/5113"
          },
          {
            "name": "23411",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23411"
          },
          {
            "name": "23362",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23362"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-6481"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.quantenblog.net/security/virus-scanner-bypass",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.quantenblog.net/security/virus-scanner-bypass"
            },
            {
              "name": "23347",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23347"
            },
            {
              "name": "23362",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23362"
            },
            {
              "name": "2006-0072",
              "refsource": "TRUSTIX",
              "tags": [],
              "url": "http://www.trustix.org/errata/2006/0072/"
            },
            {
              "name": "21609",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/21609"
            },
            {
              "name": "23417",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23417"
            },
            {
              "name": "http://kolab.org/security/kolab-vendor-notice-14.txt",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://kolab.org/security/kolab-vendor-notice-14.txt"
            },
            {
              "name": "DSA-1238",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2006/dsa-1238"
            },
            {
              "name": "GLSA-200612-18",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200612-18.xml"
            },
            {
              "name": "SUSE-SA:2006:078",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2006_78_clamav.html"
            },
            {
              "name": "23460",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23460"
            },
            {
              "name": "23379",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23379"
            },
            {
              "name": "23404",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23404"
            },
            {
              "name": "23411",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23411"
            },
            {
              "name": "MDKSA-2006:230",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:230"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=307562",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://docs.info.apple.com/article.html?artnum=307562"
            },
            {
              "name": "APPLE-SA-2008-03-18",
              "refsource": "APPLE",
              "tags": [],
              "url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
            },
            {
              "name": "29420",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/29420"
            },
            {
              "name": "31283",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/31283"
            },
            {
              "name": "ADV-2006-4948",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4948"
            },
            {
              "name": "ADV-2006-5113",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/5113"
            },
            {
              "name": "ADV-2008-0924",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2008/0924/references"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2011-03-08T02:46Z",
      "publishedDate": "2006-12-12T01:28Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2006-6481 (GCVE-0-2006-6481)

Vulnerability from cvelistv5

fkie_cve-2006-6481

Vulnerability from fkie_nvd

ghsa-qpvm-hm98-hw68

Vulnerability from github

CERTA-2008-AVI-148

Vulnerability from certfr_avis

Description

Solution

CERTA-2006-AVI-553

Vulnerability from certfr_avis

Description

Solution

gsd-2006-6481

Vulnerability from gsd

Tags

Sightings

Nomenclature