Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.6
CVSSv2

CVE-2006-6494

Published: 13/12/2006 Updated: 30/10/2018
CVSS v2 Base Score: 6.6 | Impact Score: 10 | Exploitability Score: 2.7
VMScore: 587
Vector: AV:L/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Summary

Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a locale file containing attacker-controlled format string specifiers.

Vulnerable Product Search on Vulmon Subscribe to Product

sun solaris 10.0

sun sunos 5.8

sun solaris 9.0

References

NVD-CWE-Otherhttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=449http://sunsolve.sun.com/search/document.do?assetkey=1-26-102724-1http://www.securityfocus.com/bid/21564http://securitytracker.com/id?1017376http://secunia.com/advisories/23317http://www.vupen.com/english/advisories/2006/4979https://exchange.xforce.ibmcloud.com/vulnerabilities/30849https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2121https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920buffer overflowCVE-2024-36913CVE-2024-5497CVE-2024-23917CVE-2024-4956server-side request forgeryCVE-2024-35468SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook