Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2006-3251

Published: 27/06/2006 Updated: 20/07/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Hashcash

Vulnerability Summary

Heap-based buffer overflow in the array_push function in hashcash.c for Hashcash prior to 1.21 might allow malicious users to execute arbitrary code via crafted entries.

Vulnerable Product Search on Vulmon Subscribe to Product

hashcash hashcash 1.04

hashcash hashcash 1.05

hashcash hashcash 1.13

hashcash hashcash 1.14

hashcash hashcash 1.02

hashcash hashcash 1.03

hashcash hashcash 1.11

hashcash hashcash 1.12

hashcash hashcash 1.19

hashcash hashcash

hashcash hashcash 1.06

hashcash hashcash 1.07

hashcash hashcash 1.08

hashcash hashcash 1.15

hashcash hashcash 1.16

hashcash hashcash 1.00

hashcash hashcash 1.01

hashcash hashcash 1.09

hashcash hashcash 1.10

hashcash hashcash 1.17

hashcash hashcash 1.18

Vendor Advisories

Debian CVElist Bug Report Logs: hashcash: CVE-2006-3251: buffer overflow
Debian Bug report logs - #376444 hashcash: CVE-2006-3251: buffer overflow Package: hashcash; Maintainer for hashcash is Debian QA Group <packages@qadebianorg>; Source for hashcash is src:hashcash (PTS, buildd, popcon) Reported by: Alec Berryman <alec@thenednet> Date: Mon, 3 Jul 2006 01:33:10 UTC Severity: seriou ...
Debian Security Advisories: DSA-1114-1 hashcash -- buffer overflow
Andreas Seltenreich discovered a buffer overflow in hashcash, a postage payment scheme for email that is based on hash calculations, which could allow attackers to execute arbitrary code via specially crafted entries For the stable distribution (sarge) this problem has been fixed in version 117-1sarge1 For the unstable distribution (sid) this pr ...

References

CWE-119http://www.hashcash.org/source/CHANGELOGhttp://www.gentoo.org/security/en/glsa/glsa-200606-25.xmlhttp://www.securityfocus.com/bid/18659http://secunia.com/advisories/20800http://secunia.com/advisories/20846http://www.debian.org/security/2006/dsa-1114http://secunia.com/advisories/21146http://www.vupen.com/english/advisories/2006/2551https://exchange.xforce.ibmcloud.com/vulnerabilities/27422https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=376444https://nvd.nist.govhttps://www.debian.org/security/./dsa-1114
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook