Published: 09/09/2006 Updated: 17/10/2018

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 480

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and previous versions, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun solaris 9.0
sco unixware 7.1.3
sun solaris 10.0
sun solaris 8.0

X11R6 versions 64 and below XKEYBOARD local buffer overflow exploit for Solaris on Sparc ...

/* * X11R6 XKEYBOARD extension Strcmp() for SCO UnixWare 713 x86 * Copyright 2006 RISE Security <contact@risesecurityorg>, * Ramon de Carvalho Valle <ramon@risesecurityorg> * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * th ...

/* * $Id: raptor_xkbc,v 11 2006/09/13 16:18:36 raptor Exp $ * * raptor_xkbc - XKEYBOARD Strcmp(), Solaris/SPARC 8/9/10 * Copyright (c) 2006 Marco Ivaldi <raptor@0xdeadbeefinfo> * * Buffer overflow in the Strcmp function in the XKEYBOARD extension in X * Window System X11R64 and earlier, as used in SCO UnixWare 713 and Sun * S ...

/* * X11R6 XKEYBOARD extension Strcmp() for Sun Solaris 8 9 10 x86 * Copyright 2006 RISE Security <contact@risesecurityorg>, /* * X11R6 XKEYBOARD extension Strcmp() for Sun Solaris 8 9 10 x86 * Copyright 2006 RISE Security <contact@risesecurityorg>, * Ramon de Carvalho Valle <ramon@risesecurityorg> * * This program ...

/* * X11R6 XKEYBOARD extension Strcmp() for Sun Solaris 8 9 10 SPARC * Copyright 2006 RISE Security <contact@risesecurityorg>, * Ramon de Carvalho Valle <ramon@risesecurityorg> * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * ...

NVD-CWE-Other http://www.risesecurity.org/advisory/RISE-2006001.txt http://sunsolve.sun.com/search/document.do?assetkey=1-26-102570-1 http://www.securityfocus.com/bid/19905 http://securitytracker.com/id?1016806 http://secunia.com/advisories/21815 http://secunia.com/advisories/21845 http://secunia.com/advisories/21856 http://support.avaya.com/elmodocs2/security/ASA-2006-195.htm http://secunia.com/advisories/21993 http://securityreason.com/securityalert/1545 http://www.vupen.com/english/advisories/2006/3529 http://www.vupen.com/english/advisories/2006/3525 https://exchange.xforce.ibmcloud.com/vulnerabilities/28820 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1798 http://www.securityfocus.com/archive/1/445579/100/0/threaded https://nvd.nist.gov https://packetstormsecurity.com/files/50010/raptor_xkb.c.html https://www.exploit-db.com/exploits/2332/

CVE-2006-4655

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect