// For flags

CVE-2006-4573

 

Severity Score

2.6
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.

Múltiples vulnerabilidades no especificadas en el "manejo de combinaciones de caracteres utf8" (función utf8_handle_comb en encoding.c) en screen anterior a 4.0.3 permite a atacantes con la complicidad del usuario provocar una denegación de servicio (caída o cuelgue) mediante ciertas secuencias UTF8.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2006-09-06 CVE Reserved
  • 2006-10-24 CVE Published
  • 2024-05-05 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (21)
URL Tag Source
http://docs.info.apple.com/article.html?artnum=305530 X_refsource_confirm
http://secunia.com/advisories/22573 Third Party Advisory
http://secunia.com/advisories/22583 Third Party Advisory
http://secunia.com/advisories/22611 Third Party Advisory
http://secunia.com/advisories/22647 Third Party Advisory
http://secunia.com/advisories/22649 Third Party Advisory
http://secunia.com/advisories/22707 Third Party Advisory
http://secunia.com/advisories/22726 Third Party Advisory
http://secunia.com/advisories/25402 Third Party Advisory
http://www.securityfocus.com/bid/20727 Vdb Entry
http://www.vupen.com/english/advisories/2006/4189 Vdb Entry
http://www.vupen.com/english/advisories/2007/1939 Vdb Entry
https://issues.rpath.com/browse/RPL-734 X_refsource_confirm
URL Date SRC
URL Date SRC
http://lists.gnu.org/archive/html/screen-users/2006-10/msg00028.html 2011-03-08
URL Date SRC
http://lists.apple.com/archives/security-announce/2007/May/msg00004.html 2011-03-08
http://security.gentoo.org/glsa/glsa-200611-01.xml 2011-03-08
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.480775 2011-03-08
http://www.debian.org/security/2006/dsa-1202 2011-03-08
http://www.mandriva.com/security/advisories?name=MDKSA-2006:191 2011-03-08
http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.026-screen.html 2011-03-08
http://www.ubuntu.com/usn/usn-370-1 2011-03-08
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Gnu
Search vendor "Gnu"
 Screen
Search vendor "Gnu" for product "Screen"
 <= 4.0.2
Search vendor "Gnu" for product "Screen" and version " <= 4.0.2"
-
Affected