Vulnerability CVE-2006-4250

Vulnerability Name:

CVE-2006-4250 (CCN-33508)

Assigned:

2006-08-21

Published:

2007-04-06

Updated:

2017-07-20

Summary:

Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.

CVSS v3 Severity:

9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
5.3 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2006-4250

Source: CCN
Type: Savannah project Web site
man-db

Source: CCN
Type: SA24801
man-db "BROWSER" Privilege Escalation Vulnerability

Source: SECUNIA
Type: UNKNOWN
24801

Source: SECUNIA
Type: UNKNOWN
24828

Source: SECUNIA
Type: UNKNOWN
24995

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-1278

Source: DEBIAN
Type: DSA-1278
man-db -- buffer overflow

Source: SUSE
Type: UNKNOWN
SUSE-SR:2007:007

Source: CCN
Type: OSVDB ID: 34813
man/man-db -H Argument Local Overflow

Source: BID
Type: Exploit
23355

Source: CCN
Type: BID-23355
Man Command -H Flag Local Buffer Overflow Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2007-1294

Source: VUPEN
Type: UNKNOWN
ADV-2007-1295

Source: XF
Type: UNKNOWN
mandb-hflag-bo(33508)

Source: XF
Type: UNKNOWN
mandb-hflag-bo(33508)

Source: SUSE
Type: SUSE-SR:2007:007
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:alpha:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:amd64:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:arm:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:hppa:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:ia-32:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:ia-64:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:m68k:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:mips:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:mipsel:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:ppc:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:s-390:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:*:sparc:*:*:*:*:*

OR cpe:/o:debian:debian_linux:3.1:r1:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20064250	V	CVE-2006-4250	2022-06-30
oval:org.opensuse.security:def:42397	P	Security update for the Linux Kernel (Important)	2022-06-14
oval:org.opensuse.security:def:42190	P	Security update for qemu (Low)	2022-01-27
oval:org.opensuse.security:def:112971	P	man-2.9.4-2.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:26219	P	Security update for apache2 (Important) (in QA)	2022-01-10
oval:org.opensuse.security:def:31336	P	Security update for chrony (Moderate)	2021-12-22
oval:org.opensuse.security:def:31719	P	Security update for glib-networking (Important)	2021-12-13
oval:org.opensuse.security:def:32233	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:31708	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:26170	P	Security update for postgresql12 (Important)	2021-11-22
oval:org.opensuse.security:def:31707	P	Security update for postgresql10 (Important)	2021-11-22
oval:org.opensuse.security:def:31704	P	Security update for samba (Important)	2021-11-19
oval:org.opensuse.security:def:31298	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:32211	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:31690	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:106420	P	man-2.9.4-2.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:26132	P	Security update for MozillaFirefox (Important)	2021-09-22
oval:org.opensuse.security:def:26117	P	Security update for xen (Important)	2021-09-02
oval:org.opensuse.security:def:31262	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:31675	P	Security update for bind (Moderate)	2021-08-30
oval:org.opensuse.security:def:26109	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:31251	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:32172	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:31250	P	Security update for openssl (Important)	2021-08-24
oval:org.opensuse.security:def:32161	P	Security update for cpio (Important)	2021-08-14
oval:org.opensuse.security:def:32954	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:32123	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:36241	P	man-2.5.2-17.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42648	P	man-2.5.2-17.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:26065	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:26051	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:32915	P	Security update for libxml2 (Moderate)	2021-05-05
oval:org.opensuse.security:def:31617	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:31166	P	Security update for tomcat (Important)	2021-04-29
oval:org.opensuse.security:def:32074	P	Security update for MozillaFirefox (Important)	2021-04-27
oval:org.opensuse.security:def:32070	P	Security update for clamav (Important)	2021-04-14
oval:org.opensuse.security:def:32067	P	Security update for fwupdate (Important)	2021-04-08
oval:org.opensuse.security:def:26216	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:31746	P	Security update for wavpack (Important)	2021-03-24
oval:org.opensuse.security:def:32277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:26075	P	Security update for ImageMagick (Important)	2021-01-22
oval:org.opensuse.security:def:31092	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2020-12-07
oval:org.opensuse.security:def:31560	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:32004	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:35612	P	man-2.5.2-17.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:42019	P	man-2.5.2-17.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35783	P	man-2.5.2-17.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35990	P	man-2.5.2-17.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31081	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:31080	P	Security update for python-setuptools (Important)	2020-12-02
oval:org.opensuse.security:def:25966	P	Security update for python-setuptools (Important)	2020-12-02
oval:org.opensuse.security:def:25802	P	Recommended update for LibreOffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:26469	P	Security update for phpMyAdmin (Important)	2020-12-01
oval:org.opensuse.security:def:27204	P	libopenssl0_9_8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31390	P	Security update for pam	2020-12-01
oval:org.opensuse.security:def:31900	P	Security update for Mozilla Firefox (Important)	2020-12-01
oval:org.opensuse.security:def:31468	P	Security update for powerpc-utils	2020-12-01
oval:org.opensuse.security:def:31860	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:32026	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31543	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:31911	P	Security update for gcc43 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32422	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:33165	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25175	P	Security update for libssh (Important)	2020-12-01
oval:org.opensuse.security:def:25505	P	Security update for python-PyYAML (Important)	2020-12-01
oval:org.opensuse.security:def:25842	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26577	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25334	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:25618	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:25963	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:25540	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:25744	P	Security update for djvulibre (Low)	2020-12-01
oval:org.opensuse.security:def:26272	P	Security update for openexr (Moderate)	2020-12-01
oval:org.opensuse.security:def:25866	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26508	P	Security update for phpMyAdmin (Important)	2020-12-01
oval:org.opensuse.security:def:27239	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31447	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31795	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:32538	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31916	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:31457	P	Security update for postgresql91	2020-12-01
oval:org.opensuse.security:def:31793	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32461	P	Security update for xorg-x11-libXdmcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:33204	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25239	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25589	P	Security update for zabbix (Moderate)	2020-12-01
oval:org.opensuse.security:def:25881	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26612	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25345	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:25675	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26012	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:26747	P	libgdiplus0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25541	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:25825	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26316	P	Recommended update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:25790	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:25994	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26367	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:26522	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31534	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:31834	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:32577	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31965	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:32708	P	libdrm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31458	P	Security update for postgresql91 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31767	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:31925	P	Security update for ghostscript-library (Important)	2020-12-01
oval:org.opensuse.security:def:32317	P	Security update for rsync (Moderate)	2020-12-01
oval:org.opensuse.security:def:32483	P	OpenEXR on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25163	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:25367	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:25740	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25895	P	Security update for pcsc-lite (Moderate)	2020-12-01
oval:org.opensuse.security:def:25409	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:25759	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:26782	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25552	P	Security update for python3-requests (Moderate)	2020-12-01
oval:org.opensuse.security:def:25882	P	Security update for python-tornado (Moderate)	2020-12-01
oval:org.opensuse.security:def:26954	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25791	P	Security update for kernel-source (Moderate)	2020-12-01
oval:org.opensuse.security:def:26420	P	Security update for phpMyAdmin (Moderate)	2020-12-01
oval:org.opensuse.security:def:26566	P	ipsec-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31856	P	Security update for cups (Moderate)	2020-12-01
oval:org.opensuse.security:def:32747	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31469	P	Security update for ppc64-diag	2020-12-01
oval:org.opensuse.security:def:31824	P	Security update for bash (Low)	2020-12-01
oval:org.opensuse.security:def:32017	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32373	P	Security update for tcpdump (Important)	2020-12-01
oval:org.opensuse.security:def:32527	P	gtk2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25164	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:25448	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25793	P	Security update for icedtea-web (Moderate)	2020-12-01
oval:org.opensuse.security:def:25939	P	Security update for gstreamer-0_10-plugins-base (Moderate)	2020-12-01
oval:org.opensuse.security:def:25333	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:25537	P	Security update for gnuplot (Moderate)	2020-12-01
oval:org.opensuse.security:def:25910	P	Security update for gstreamer-0_10-plugins-base (Low)	2020-12-01
oval:org.opensuse.security:def:25616	P	Security update for less (Moderate)	2020-12-01
oval:org.opensuse.security:def:26258	P	Security update for openconnect (Moderate)	2020-12-01
oval:org.opensuse.security:def:26989	P	man on GA media (Moderate)	2020-12-01
oval:org.debian:def:1278	V	buffer overflow	2007-04-06

BACK