CVE-2006-4262

cscope: multiple buffer overflows

Severity Score

5.1

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file list parsing, (2) long pathnames that result from path variable expansion such as tilde expansion for the HOME environment variable, and (3) a long -f (aka reffile) command line argument.

Múltiples desbordamientos de búfer en cscope 15.5 y anetriores permiten a atacantes con la intervención del usuario provocar una denegación de servicio (caída) y posiblemente ejecutar código de su elección a través de múltiples vectores que incluyen (1) un nombre de ruta largo que no se maneja adecuadamente durante el análisis de la lista de archivos, (2) nombres largos de ruta que resultan de la expansión de rutas variables como la expansión de la "tilde" para la variable de entorno HOME, y (3) un argumento de línea de comandos -f (o reffile) largo.

*Credits: N/A

Attack Vector

Network

Attack Complexity

High

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

Attack Vector

Local

Attack Complexity

High

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-08-21 CVE Reserved
2006-08-23 CVE Published
2024-03-04 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (19)

URL	Tag	Source
http://sourceforge.net/mailarchive/forum.php?thread_id=30266760&forum_id=33500	X_refsource_confirm
http://sourceforge.net/mailarchive/forum.php?thread_id=30266761&forum_id=33500	X_refsource_confirm
http://www.osvdb.org/28135	Vdb Entry
http://www.osvdb.org/28136	Vdb Entry
http://www.securityfocus.com/bid/19686	Vdb Entry
http://www.securityfocus.com/bid/19687	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/28545	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/28546	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9661	Signature

URL	Date	SRC

URL	Date	SRC
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=203645	2017-10-11

URL	Date	SRC
http://secunia.com/advisories/21601	2017-10-11
http://secunia.com/advisories/22239	2017-10-11
http://secunia.com/advisories/22515	2017-10-11
http://security.gentoo.org/glsa/glsa-200610-08.xml	2017-10-11
http://www.debian.org/security/2006/dsa-1186	2017-10-11
http://www.redhat.com/support/errata/RHSA-2009-1101.html	2017-10-11
http://www.vupen.com/english/advisories/2006/3374	2017-10-11
https://access.redhat.com/security/cve/CVE-2006-4262	2009-06-15
https://bugzilla.redhat.com/show_bug.cgi?id=203645	2009-06-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cscope Search vendor "Cscope"		Cscope Search vendor "Cscope" for product "Cscope"				<= 15.5 Search vendor "Cscope" for product "Cscope" and version " <= 15.5"		-		Affected