CVE-2006-0963

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-0963
Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via (1) long locale environment variables to a strcpy function call in c_locale_glibc2.c and (2) long arguments to unspecified functions in num_put_float.cpp.

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/19051 Not Applicable Patch Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=397543 Not Applicable
http://www.securityfocus.com/bid/16928 Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2006/0800 Permissions Required
https://exchange.xforce.ibmcloud.com/vulnerabilities/25159 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:stlport_project:stlport:5.0.2:*:*:*:*:*:*:*
History

No history.

Information

Published : 2006-03-02 23:02

Updated : 2024-02-28 10:42

NVD link : CVE-2006-0963

Mitre link : CVE-2006-0963

CVE.ORG link : CVE-2006-0963

JSON object : View

Products Affected

stlport_project

  • stlport
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024