Vulnerability-Lookup

CVE-2006-7227 (GCVE-0-2006-7227)

Vulnerability from cvelistv5 – Published: 2007-11-15 02:00 – Updated: 2024-08-07 20:57

Summary

Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow. NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

Tags

	http://secunia.com/advisories/30219	third-party-advisoryx_refsource_SECUNIA
	http://security.gentoo.org/glsa/glsa-200711-30.xml	vendor-advisoryx_refsource_GENTOO
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://support.avaya.com/elmodocs2/security/ASA-2…	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://www.debian.org/security/2008/dsa-1570	vendor-advisoryx_refsource_DEBIAN
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://secunia.com/advisories/28658	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/27773	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/28406	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/26462	vdb-entryx_refsource_BID
	http://security.gentoo.org/glsa/glsa-200805-11.xml	vendor-advisoryx_refsource_GENTOO
	http://www.redhat.com/support/errata/RHSA-2007-10…	vendor-advisoryx_refsource_REDHAT
	http://secunia.com/advisories/27741	third-party-advisoryx_refsource_SECUNIA
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE
	http://www.pcre.org/changelog.txt	x_refsource_CONFIRM
	http://secunia.com/advisories/30155	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/27869	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/28720	third-party-advisoryx_refsource_SECUNIA
	http://security.gentoo.org/glsa/glsa-200801-02.xml	vendor-advisoryx_refsource_GENTOO
	http://secunia.com/advisories/27582	third-party-advisoryx_refsource_SECUNIA
	http://bugs.gentoo.org/show_bug.cgi?id=198976	x_refsource_MISC
	http://scary.beasts.org/security/CESA-2007-006.html	x_refsource_MISC
	http://security.gentoo.org/glsa/glsa-200801-19.xml	vendor-advisoryx_refsource_GENTOO
	http://security.gentoo.org/glsa/glsa-200801-18.xml	vendor-advisoryx_refsource_GENTOO
	http://secunia.com/advisories/28414	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/30106	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/28714	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T20:57:40.399Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "30219",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/30219"
          },
          {
            "name": "GLSA-200711-30",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
          },
          {
            "name": "oval:org.mitre.oval:def:10408",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
          },
          {
            "name": "MDVSA-2008:030",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
          },
          {
            "name": "DSA-1570",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2008/dsa-1570"
          },
          {
            "name": "SUSE-SA:2008:004",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
          },
          {
            "name": "28658",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28658"
          },
          {
            "name": "27773",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27773"
          },
          {
            "name": "28406",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28406"
          },
          {
            "name": "26462",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26462"
          },
          {
            "name": "GLSA-200805-11",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
          },
          {
            "name": "RHSA-2007:1052",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
          },
          {
            "name": "27741",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27741"
          },
          {
            "name": "SUSE-SA:2007:062",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.pcre.org/changelog.txt"
          },
          {
            "name": "30155",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/30155"
          },
          {
            "name": "27869",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27869"
          },
          {
            "name": "28720",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28720"
          },
          {
            "name": "GLSA-200801-02",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
          },
          {
            "name": "27582",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27582"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://scary.beasts.org/security/CESA-2007-006.html"
          },
          {
            "name": "GLSA-200801-19",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
          },
          {
            "name": "GLSA-200801-18",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
          },
          {
            "name": "28414",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28414"
          },
          {
            "name": "30106",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/30106"
          },
          {
            "name": "28714",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28714"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-07-04T04:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow.  NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-10T04:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "30219",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/30219"
        },
        {
          "name": "GLSA-200711-30",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
        },
        {
          "name": "oval:org.mitre.oval:def:10408",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
        },
        {
          "name": "MDVSA-2008:030",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
        },
        {
          "name": "DSA-1570",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2008/dsa-1570"
        },
        {
          "name": "SUSE-SA:2008:004",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
        },
        {
          "name": "28658",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28658"
        },
        {
          "name": "27773",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27773"
        },
        {
          "name": "28406",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28406"
        },
        {
          "name": "26462",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26462"
        },
        {
          "name": "GLSA-200805-11",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
        },
        {
          "name": "RHSA-2007:1052",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
        },
        {
          "name": "27741",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27741"
        },
        {
          "name": "SUSE-SA:2007:062",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.pcre.org/changelog.txt"
        },
        {
          "name": "30155",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/30155"
        },
        {
          "name": "27869",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27869"
        },
        {
          "name": "28720",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28720"
        },
        {
          "name": "GLSA-200801-02",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
        },
        {
          "name": "27582",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27582"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://scary.beasts.org/security/CESA-2007-006.html"
        },
        {
          "name": "GLSA-200801-19",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
        },
        {
          "name": "GLSA-200801-18",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
        },
        {
          "name": "28414",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28414"
        },
        {
          "name": "30106",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/30106"
        },
        {
          "name": "28714",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28714"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2006-7227",
    "datePublished": "2007-11-15T02:00:00.000Z",
    "dateReserved": "2007-11-14T05:00:00.000Z",
    "dateUpdated": "2024-08-07T20:57:40.399Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

FKIE_CVE-2006-7227

Vulnerability from fkie_nvd - Published: 2007-11-14 21:46 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	http://bugs.gentoo.org/show_bug.cgi?id=198976
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html
secalert@redhat.com	http://scary.beasts.org/security/CESA-2007-006.html
secalert@redhat.com	http://secunia.com/advisories/27582	Patch
secalert@redhat.com	http://secunia.com/advisories/27741
secalert@redhat.com	http://secunia.com/advisories/27773
secalert@redhat.com	http://secunia.com/advisories/27869
secalert@redhat.com	http://secunia.com/advisories/28406
secalert@redhat.com	http://secunia.com/advisories/28414
secalert@redhat.com	http://secunia.com/advisories/28658
secalert@redhat.com	http://secunia.com/advisories/28714
secalert@redhat.com	http://secunia.com/advisories/28720
secalert@redhat.com	http://secunia.com/advisories/30106
secalert@redhat.com	http://secunia.com/advisories/30155
secalert@redhat.com	http://secunia.com/advisories/30219
secalert@redhat.com	http://security.gentoo.org/glsa/glsa-200711-30.xml
secalert@redhat.com	http://security.gentoo.org/glsa/glsa-200801-02.xml
secalert@redhat.com	http://security.gentoo.org/glsa/glsa-200801-18.xml
secalert@redhat.com	http://security.gentoo.org/glsa/glsa-200801-19.xml
secalert@redhat.com	http://security.gentoo.org/glsa/glsa-200805-11.xml
secalert@redhat.com	http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm
secalert@redhat.com	http://www.debian.org/security/2008/dsa-1570
secalert@redhat.com	http://www.mandriva.com/security/advisories?name=MDVSA-2008:030
secalert@redhat.com	http://www.novell.com/linux/security/advisories/2007_62_pcre.html
secalert@redhat.com	http://www.pcre.org/changelog.txt
secalert@redhat.com	http://www.redhat.com/support/errata/RHSA-2007-1052.html	Patch
secalert@redhat.com	http://www.securityfocus.com/bid/26462
secalert@redhat.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408
af854a3a-2127-422b-91ae-364da2661108	http://bugs.gentoo.org/show_bug.cgi?id=198976
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html
af854a3a-2127-422b-91ae-364da2661108	http://scary.beasts.org/security/CESA-2007-006.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27582	Patch
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27741
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27773
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27869
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28406
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28414
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28658
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28714
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28720
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30106
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30155
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/30219
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200711-30.xml
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200801-02.xml
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200801-18.xml
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200801-19.xml
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200805-11.xml
af854a3a-2127-422b-91ae-364da2661108	http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2008/dsa-1570
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2008:030
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2007_62_pcre.html
af854a3a-2127-422b-91ae-364da2661108	http://www.pcre.org/changelog.txt
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2007-1052.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/26462
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408

Impacted products

	Vendor	Product	Version
	pcre	pcre	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "03C81A67-7297-4B87-956F-D61E11FEB9F4",
              "versionEndIncluding": "6.6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow.  NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de entero en la librer\u00eda Perl-Compatible Regular Expression (PCRE) anterior a 6.7 permite a atacantes locales o remotos (dependiendo del contexto) ejecutar c\u00f3digo de su elecci\u00f3n mediante una expresi\u00f3n regular que contiene un gran n\u00famero de sobpatrones con nombre (name_count) o nombres de subpatrones largos (max_name_size), lo cual dispara un desbordamiento de b\u00fafer. NOTA: este problema fue incluido originalmente en CVE-2006-7224, pero ese CVE ha sido rechadazo y dividido."
    }
  ],
  "id": "CVE-2006-7227",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-11-14T21:46:00.000",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://scary.beasts.org/security/CESA-2007-006.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://secunia.com/advisories/27582"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/27741"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/27773"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/27869"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/28406"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/28414"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/28658"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/28714"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/28720"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/30106"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/30155"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/30219"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2008/dsa-1570"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.pcre.org/changelog.txt"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/26462"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://scary.beasts.org/security/CESA-2007-006.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://secunia.com/advisories/27582"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/27741"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/27773"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/27869"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/28406"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/28414"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/28658"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/28714"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/28720"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/30106"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/30155"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/30219"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2008/dsa-1570"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.pcre.org/changelog.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/26462"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-189"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-VQWH-PX94-7WR8

Vulnerability from github – Published: 2022-05-01 07:45 – Updated: 2022-05-01 07:45

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-7227"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-11-14T21:46:00Z",
    "severity": "MODERATE"
  },
  "details": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow.  NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split.",
  "id": "GHSA-vqwh-px94-7wr8",
  "modified": "2022-05-01T07:45:43Z",
  "published": "2022-05-01T07:45:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-7227"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2007:1052"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2006-7227"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=383341"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
    },
    {
      "type": "WEB",
      "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
    },
    {
      "type": "WEB",
      "url": "http://scary.beasts.org/security/CESA-2007-006.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/27582"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/27741"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/27773"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/27869"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/28406"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/28414"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/28658"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/28714"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/28720"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/30106"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/30155"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/30219"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2008/dsa-1570"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
    },
    {
      "type": "WEB",
      "url": "http://www.pcre.org/changelog.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/26462"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2007-AVI-513

Vulnerability from certfr_avis - Published: 2007-11-30 - Updated: 2007-11-30

None

Description

La bibliothèque PCRE (Perl Compatible Regular Expressions) est un ensemble de fonctions permettant d'utiliser des expressions régulières construites sémantiquement et syntaxiquement de la même manière que les expressions régulières de Perl.

De multiples vulnérabilités ont été découvertes dans la bibliothèque PCRE. L'exploitation de ces vulnérabilités permet à un utilisateur malintentionné d'effectuer diverses actions telles que le déni de service, l'accès à des données sensibles, ou l'exécution de code arbitraire.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

PCRE versions antérieures à la version 7.3.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

GSD-2006-7227

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-7227

Aliases

CVE-2006-7227

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-7227",
    "description": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow.  NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split.",
    "id": "GSD-2006-7227",
    "references": [
      "https://www.suse.com/security/cve/CVE-2006-7227.html",
      "https://www.debian.org/security/2008/dsa-1570",
      "https://access.redhat.com/errata/RHSA-2007:1052",
      "https://linux.oracle.com/cve/CVE-2006-7227.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-7227"
      ],
      "details": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow. NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split.",
      "id": "GSD-2006-7227",
      "modified": "2023-12-13T01:19:53.570251Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2006-7227",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow. NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html",
            "refsource": "MISC",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
          },
          {
            "name": "http://scary.beasts.org/security/CESA-2007-006.html",
            "refsource": "MISC",
            "url": "http://scary.beasts.org/security/CESA-2007-006.html"
          },
          {
            "name": "http://secunia.com/advisories/27582",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/27582"
          },
          {
            "name": "http://secunia.com/advisories/27773",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/27773"
          },
          {
            "name": "http://secunia.com/advisories/27869",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/27869"
          },
          {
            "name": "http://secunia.com/advisories/28658",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/28658"
          },
          {
            "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm",
            "refsource": "MISC",
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
          },
          {
            "name": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030",
            "refsource": "MISC",
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
          },
          {
            "name": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html",
            "refsource": "MISC",
            "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
          },
          {
            "name": "http://www.pcre.org/changelog.txt",
            "refsource": "MISC",
            "url": "http://www.pcre.org/changelog.txt"
          },
          {
            "name": "http://www.redhat.com/support/errata/RHSA-2007-1052.html",
            "refsource": "MISC",
            "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
          },
          {
            "name": "http://www.securityfocus.com/bid/26462",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/bid/26462"
          },
          {
            "name": "http://bugs.gentoo.org/show_bug.cgi?id=198976",
            "refsource": "MISC",
            "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
          },
          {
            "name": "http://secunia.com/advisories/27741",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/27741"
          },
          {
            "name": "http://secunia.com/advisories/28406",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/28406"
          },
          {
            "name": "http://secunia.com/advisories/28414",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/28414"
          },
          {
            "name": "http://secunia.com/advisories/28714",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/28714"
          },
          {
            "name": "http://secunia.com/advisories/28720",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/28720"
          },
          {
            "name": "http://secunia.com/advisories/30106",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/30106"
          },
          {
            "name": "http://secunia.com/advisories/30155",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/30155"
          },
          {
            "name": "http://secunia.com/advisories/30219",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/30219"
          },
          {
            "name": "http://security.gentoo.org/glsa/glsa-200711-30.xml",
            "refsource": "MISC",
            "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
          },
          {
            "name": "http://security.gentoo.org/glsa/glsa-200801-02.xml",
            "refsource": "MISC",
            "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
          },
          {
            "name": "http://security.gentoo.org/glsa/glsa-200801-18.xml",
            "refsource": "MISC",
            "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
          },
          {
            "name": "http://security.gentoo.org/glsa/glsa-200801-19.xml",
            "refsource": "MISC",
            "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
          },
          {
            "name": "http://security.gentoo.org/glsa/glsa-200805-11.xml",
            "refsource": "MISC",
            "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
          },
          {
            "name": "http://www.debian.org/security/2008/dsa-1570",
            "refsource": "MISC",
            "url": "http://www.debian.org/security/2008/dsa-1570"
          },
          {
            "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408",
            "refsource": "MISC",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "6.6",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2006-7227"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Integer overflow in Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to execute arbitrary code via a regular expression containing a large number of named subpatterns (name_count) or long subpattern names (max_name_size), which triggers a buffer overflow. NOTE: this issue was originally subsumed by CVE-2006-7224, but that CVE has been REJECTED and split."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-189"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://scary.beasts.org/security/CESA-2007-006.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://scary.beasts.org/security/CESA-2007-006.html"
            },
            {
              "name": "http://www.pcre.org/changelog.txt",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.pcre.org/changelog.txt"
            },
            {
              "name": "RHSA-2007:1052",
              "refsource": "REDHAT",
              "tags": [
                "Patch"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2007-1052.html"
            },
            {
              "name": "27582",
              "refsource": "SECUNIA",
              "tags": [
                "Patch"
              ],
              "url": "http://secunia.com/advisories/27582"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"
            },
            {
              "name": "GLSA-200711-30",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200711-30.xml"
            },
            {
              "name": "SUSE-SA:2007:062",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2007_62_pcre.html"
            },
            {
              "name": "26462",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/26462"
            },
            {
              "name": "27741",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/27741"
            },
            {
              "name": "27773",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/27773"
            },
            {
              "name": "27869",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/27869"
            },
            {
              "name": "http://bugs.gentoo.org/show_bug.cgi?id=198976",
              "refsource": "MISC",
              "tags": [],
              "url": "http://bugs.gentoo.org/show_bug.cgi?id=198976"
            },
            {
              "name": "GLSA-200801-02",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200801-02.xml"
            },
            {
              "name": "28406",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/28406"
            },
            {
              "name": "28414",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/28414"
            },
            {
              "name": "GLSA-200801-18",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200801-18.xml"
            },
            {
              "name": "GLSA-200801-19",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200801-19.xml"
            },
            {
              "name": "MDVSA-2008:030",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"
            },
            {
              "name": "SUSE-SA:2008:004",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"
            },
            {
              "name": "28658",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/28658"
            },
            {
              "name": "28714",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/28714"
            },
            {
              "name": "28720",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/28720"
            },
            {
              "name": "GLSA-200805-11",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200805-11.xml"
            },
            {
              "name": "30155",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/30155"
            },
            {
              "name": "30219",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/30219"
            },
            {
              "name": "30106",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/30106"
            },
            {
              "name": "DSA-1570",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2008/dsa-1570"
            },
            {
              "name": "oval:org.mitre.oval:def:10408",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10408"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2023-02-13T02:17Z",
      "publishedDate": "2007-11-14T21:46Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-7227 (GCVE-0-2006-7227)

FKIE_CVE-2006-7227

GHSA-VQWH-PX94-7WR8

CERTA-2007-AVI-513

Description

Solution

GSD-2006-7227

Tags

Sightings

Nomenclature