Vulnerability-Lookup

CVE-2006-4980 (GCVE-0-2006-4980)

Vulnerability from cvelistv5 – Published: 2006-10-09 21:00 – Updated: 2024-08-07 19:32

Summary

Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://secunia.com/advisories/22303	third-party-advisoryx_refsource_SECUNIA
	http://www.debian.org/security/2006/dsa-1197	vendor-advisoryx_refsource_DEBIAN
	http://www.vmware.com/support/vi3/doc/esx-3069097…	x_refsource_CONFIRM
	http://secunia.com/advisories/22487	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/archive/1/448244/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/22639	third-party-advisoryx_refsource_SECUNIA
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/23680	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/22512	third-party-advisoryx_refsource_SECUNIA
	https://launchpad.net/distros/ubuntu/+source/pyth…	x_refsource_CONFIRM
	http://zoehep.xent.com/~bsittler/python2.4-2.4.3_…	x_refsource_CONFIRM
	http://support.avaya.com/elmodocs2/security/ASA-2…	x_refsource_CONFIRM
	http://sourceforge.net/tracker/index.php?func=det…	x_refsource_CONFIRM
	http://secunia.com/advisories/31492	third-party-advisoryx_refsource_SECUNIA
	http://www.redhat.com/support/errata/RHSA-2008-06…	vendor-advisoryx_refsource_REDHAT
	http://www.redhat.com/support/errata/RHSA-2006-07…	vendor-advisoryx_refsource_REDHAT
	http://www.vupen.com/english/advisories/2006/5131	vdb-entryx_refsource_VUPEN
	http://securitytracker.com/id?1017019	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/22357	third-party-advisoryx_refsource_SECUNIA
	http://www.debian.org/security/2006/dsa-1198	vendor-advisoryx_refsource_DEBIAN
	http://secunia.com/advisories/22379	third-party-advisoryx_refsource_SECUNIA
	http://www.ubuntu.com/usn/usn-359-1	vendor-advisoryx_refsource_UBUNTU
	http://secunia.com/advisories/22448	third-party-advisoryx_refsource_SECUNIA
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE
	http://www.securityfocus.com/bid/20376	vdb-entryx_refsource_BID
	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?…	x_refsource_CONFIRM
	http://security.gentoo.org/glsa/glsa-200610-07.xml	vendor-advisoryx_refsource_GENTOO
	http://www.vupen.com/english/advisories/2006/3940	vdb-entryx_refsource_VUPEN
	https://issues.rpath.com/browse/RPL-702	x_refsource_CONFIRM
	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589	x_refsource_CONFIRM
	http://www.securityfocus.com/archive/1/456546/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/22358	third-party-advisoryx_refsource_SECUNIA
	http://www.vmware.com/support/vi3/doc/esx-9986131…	x_refsource_CONFIRM
	ftp://patches.sgi.com/support/free/security/advis…	vendor-advisoryx_refsource_SGI
	http://secunia.com/advisories/22297	third-party-advisoryx_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://kb.vmware.com/KanisaPlatform/Publishing/88…	x_refsource_CONFIRM
	http://secunia.com/advisories/22531	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/22276	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:32:22.516Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "22303",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22303"
          },
          {
            "name": "DSA-1197",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2006/dsa-1197"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
          },
          {
            "name": "22487",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22487"
          },
          {
            "name": "20061011 rPSA-2006-0187-1 idle python",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
          },
          {
            "name": "22639",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22639"
          },
          {
            "name": "MDKSA-2006:181",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
          },
          {
            "name": "python-repr-bo(29408)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
          },
          {
            "name": "23680",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23680"
          },
          {
            "name": "22512",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22512"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
          },
          {
            "name": "31492",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/31492"
          },
          {
            "name": "RHSA-2008:0629",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
          },
          {
            "name": "RHSA-2006:0713",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
          },
          {
            "name": "ADV-2006-5131",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/5131"
          },
          {
            "name": "1017019",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1017019"
          },
          {
            "name": "22357",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22357"
          },
          {
            "name": "DSA-1198",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2006/dsa-1198"
          },
          {
            "name": "22379",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22379"
          },
          {
            "name": "USN-359-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/usn-359-1"
          },
          {
            "name": "22448",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22448"
          },
          {
            "name": "SUSE-SR:2006:025",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
          },
          {
            "name": "20376",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/20376"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
          },
          {
            "name": "GLSA-200610-07",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
          },
          {
            "name": "ADV-2006-3940",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/3940"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://issues.rpath.com/browse/RPL-702"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
          },
          {
            "name": "20070110 VMware ESX server security updates",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
          },
          {
            "name": "22358",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22358"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
          },
          {
            "name": "20061001-01-P",
            "tags": [
              "vendor-advisory",
              "x_refsource_SGI",
              "x_transferred"
            ],
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
          },
          {
            "name": "22297",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22297"
          },
          {
            "name": "oval:org.mitre.oval:def:10789",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
          },
          {
            "name": "22531",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22531"
          },
          {
            "name": "22276",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22276"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-10-06T04:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-18T00:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "22303",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22303"
        },
        {
          "name": "DSA-1197",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2006/dsa-1197"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
        },
        {
          "name": "22487",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22487"
        },
        {
          "name": "20061011 rPSA-2006-0187-1 idle python",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
        },
        {
          "name": "22639",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22639"
        },
        {
          "name": "MDKSA-2006:181",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
        },
        {
          "name": "python-repr-bo(29408)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
        },
        {
          "name": "23680",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23680"
        },
        {
          "name": "22512",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22512"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
        },
        {
          "name": "31492",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/31492"
        },
        {
          "name": "RHSA-2008:0629",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
        },
        {
          "name": "RHSA-2006:0713",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
        },
        {
          "name": "ADV-2006-5131",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/5131"
        },
        {
          "name": "1017019",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1017019"
        },
        {
          "name": "22357",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22357"
        },
        {
          "name": "DSA-1198",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2006/dsa-1198"
        },
        {
          "name": "22379",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22379"
        },
        {
          "name": "USN-359-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/usn-359-1"
        },
        {
          "name": "22448",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22448"
        },
        {
          "name": "SUSE-SR:2006:025",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
        },
        {
          "name": "20376",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/20376"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
        },
        {
          "name": "GLSA-200610-07",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
        },
        {
          "name": "ADV-2006-3940",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/3940"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://issues.rpath.com/browse/RPL-702"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
        },
        {
          "name": "20070110 VMware ESX server security updates",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
        },
        {
          "name": "22358",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22358"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
        },
        {
          "name": "20061001-01-P",
          "tags": [
            "vendor-advisory",
            "x_refsource_SGI"
          ],
          "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
        },
        {
          "name": "22297",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22297"
        },
        {
          "name": "oval:org.mitre.oval:def:10789",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
        },
        {
          "name": "22531",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22531"
        },
        {
          "name": "22276",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22276"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4980",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "22303",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22303"
            },
            {
              "name": "DSA-1197",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2006/dsa-1197"
            },
            {
              "name": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html",
              "refsource": "CONFIRM",
              "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
            },
            {
              "name": "22487",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22487"
            },
            {
              "name": "20061011 rPSA-2006-0187-1 idle python",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
            },
            {
              "name": "22639",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22639"
            },
            {
              "name": "MDKSA-2006:181",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
            },
            {
              "name": "python-repr-bo(29408)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
            },
            {
              "name": "23680",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23680"
            },
            {
              "name": "22512",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22512"
            },
            {
              "name": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633",
              "refsource": "CONFIRM",
              "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
            },
            {
              "name": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff",
              "refsource": "CONFIRM",
              "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
            },
            {
              "name": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470",
              "refsource": "CONFIRM",
              "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
            },
            {
              "name": "31492",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/31492"
            },
            {
              "name": "RHSA-2008:0629",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
            },
            {
              "name": "RHSA-2006:0713",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
            },
            {
              "name": "ADV-2006-5131",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/5131"
            },
            {
              "name": "1017019",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1017019"
            },
            {
              "name": "22357",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22357"
            },
            {
              "name": "DSA-1198",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2006/dsa-1198"
            },
            {
              "name": "22379",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22379"
            },
            {
              "name": "USN-359-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/usn-359-1"
            },
            {
              "name": "22448",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22448"
            },
            {
              "name": "SUSE-SR:2006:025",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
            },
            {
              "name": "20376",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/20376"
            },
            {
              "name": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162",
              "refsource": "CONFIRM",
              "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
            },
            {
              "name": "GLSA-200610-07",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
            },
            {
              "name": "ADV-2006-3940",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/3940"
            },
            {
              "name": "https://issues.rpath.com/browse/RPL-702",
              "refsource": "CONFIRM",
              "url": "https://issues.rpath.com/browse/RPL-702"
            },
            {
              "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589",
              "refsource": "CONFIRM",
              "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
            },
            {
              "name": "20070110 VMware ESX server security updates",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
            },
            {
              "name": "22358",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22358"
            },
            {
              "name": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html",
              "refsource": "CONFIRM",
              "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
            },
            {
              "name": "20061001-01-P",
              "refsource": "SGI",
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
            },
            {
              "name": "22297",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22297"
            },
            {
              "name": "oval:org.mitre.oval:def:10789",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
            },
            {
              "name": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html",
              "refsource": "CONFIRM",
              "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
            },
            {
              "name": "22531",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22531"
            },
            {
              "name": "22276",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22276"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-4980",
    "datePublished": "2006-10-09T21:00:00.000Z",
    "dateReserved": "2006-09-25T04:00:00.000Z",
    "dateUpdated": "2024-08-07T19:32:22.516Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2007-AVI-026

Vulnerability from certfr_avis - Published: 2007-01-11 - Updated: 2007-01-11

De multiples vulnérabilités ont été corrigées pour les produits VMware ESX Server 2.x et 3.0.x.

Description

De multiples vulnérabilités ont été découvertes dans le produit VMware ESX Server. Celles-ci concernent :

Une mauvaise gestion des droits sur les clés SSL générées par vmware-config (CVE-2006-3589) ;
certaines bibilothèques OpenSSL (CVE-2006-2937, CVE-2006-2940, CVE-2006-4339, CVE-2006-4343, CVE-2006-3738) ;
OpenSSH (CVE-2004-2069, CVE-2006-0225, CVE-2003-0386, CVE-2006-4924, CVE-2006-5051, CVE-2006-5794) ;
un débordement de tampon dans la fonction repr() utilisée par certaines applications en Python (CVE-2006-4980) ;
un problème concernant les fichiers de disques virtuels ( .vmdk ou .dsk ) nouvellement créés, qui contiennent des blocs de fichiers de disques récemment effacés.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	VMware	N/A	VMware ESX Server 3.0.x
	VMware	N/A	VMware ESX Server 2.x.

References

Title

Publication Time

Tags

Bulletin de sécurité VMware VMSA-2007-0001	2007-01-09	vendor-advisory
Patch pour VMWare ESX Server 2.5.3 :	-	other
Patch pour VMware ESX Server 2.0.2 :	-	other
Patch pour VMware ESX Server 3.0.0 :	-	other
Patch pour VMWare ESX Server 2.1.3 :	-	other
Patch pour VMware ESX Server 2.5.4 :	-	other
Patch pour VMware ESX Server 3.0.1 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "VMware ESX Server 3.0.x",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware ESX Server 2.x.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le produit VMware\nESX Server. Celles-ci concernent :\n\n-   Une mauvaise gestion des droits sur les cl\u00e9s SSL g\u00e9n\u00e9r\u00e9es par\n    vmware-config (CVE-2006-3589) ;\n-   certaines bibiloth\u00e8ques OpenSSL (CVE-2006-2937, CVE-2006-2940,\n    CVE-2006-4339, CVE-2006-4343, CVE-2006-3738) ;\n-   OpenSSH (CVE-2004-2069, CVE-2006-0225, CVE-2003-0386, CVE-2006-4924,\n    CVE-2006-5051, CVE-2006-5794) ;\n-   un d\u00e9bordement de tampon dans la fonction repr() utilis\u00e9e par\n    certaines applications en Python (CVE-2006-4980) ;\n-   un probl\u00e8me concernant les fichiers de disques virtuels ( .vmdk ou\n    .dsk ) nouvellement cr\u00e9\u00e9s, qui contiennent des blocs de fichiers de\n    disques r\u00e9cemment effac\u00e9s.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-4339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4339"
    },
    {
      "name": "CVE-2006-3589",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-3589"
    },
    {
      "name": "CVE-2006-2940",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-2940"
    },
    {
      "name": "CVE-2004-2069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-2069"
    },
    {
      "name": "CVE-2006-4924",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4924"
    },
    {
      "name": "CVE-2003-0386",
      "url": "https://www.cve.org/CVERecord?id=CVE-2003-0386"
    },
    {
      "name": "CVE-2006-4343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4343"
    },
    {
      "name": "CVE-2006-5794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-5794"
    },
    {
      "name": "CVE-2006-3738",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-3738"
    },
    {
      "name": "CVE-2006-0225",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-0225"
    },
    {
      "name": "CVE-2006-2937",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-2937"
    },
    {
      "name": "CVE-2006-5051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-5051"
    },
    {
      "name": "CVE-2006-4980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4980"
    }
  ],
  "initial_release_date": "2007-01-11T00:00:00",
  "last_revision_date": "2007-01-11T00:00:00",
  "links": [
    {
      "title": "Patch pour VMWare ESX Server 2.5.3 :",
      "url": "http://www.vmware.com/support/esx25/doc/esx-253-200612-patch.html"
    },
    {
      "title": "Patch pour VMware ESX Server 2.0.2 :",
      "url": "http://www.vmware.com/support/esx2/doc/esx-202-200612-patch.html"
    },
    {
      "title": "Patch pour VMware ESX Server 3.0.0 :",
      "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
    },
    {
      "title": "Patch pour VMWare ESX Server 2.1.3 :",
      "url": "http://www.vmware.com/support/esx21/doc/esx-213-200612-patch.html"
    },
    {
      "title": "Patch pour VMware ESX Server 2.5.4 :",
      "url": "http://www.vmware.com/support/esx25/doc/esx-254-200612-patch.html"
    },
    {
      "title": "Patch pour VMware ESX Server 3.0.1 :",
      "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
    }
  ],
  "reference": "CERTA-2007-AVI-026",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-01-11T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es pour les produits VMware\nESX Server 2.x et 3.0.x.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans VMware",
  "vendor_advisories": [
    {
      "published_at": "2007-01-09",
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2007-0001",
      "url": "None"
    }
  ]
}

CERTA-2006-AVI-435

Vulnerability from certfr_avis - Published: 2006-10-10 - Updated: 2006-10-23

Une vulnérabilité permettant l'exécution de code arbitraire à distance a été découverte dans Python

Description

Une vulnérabilité au niveau de la fonction repr() a été découverte dans l'interpréteur de Python. Cette vulnérabilité peut être exploitée par un utilisateur mal intentionné via une chaine UTF-32/UCS-4 spécialement construite, et exécuter par ce biais du code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Python versions comprises entre la version 2.3 et la version 2.6.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Journal de mise à jour Python	None	vendor-advisory
Traitement de la vulnérabilité sur sourceforge :	-	other
Bulletin de sécurité Debian DSA-1198 du 23 octobre 2006 :	-	other
Bulletin de sécurité RedHat du 10 octobre 2006 :	-	other
Bulletin de sécurité Ubuntu USN-359-1 du 09 octobre 2006 :	-	other
Mise à jour à partir de SVN :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003ePython versions comprises entre la  version 2.3 et la version 2.6.\u003c/p\u003e",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 au niveau de la fonction repr() a \u00e9t\u00e9 d\u00e9couverte dans\nl\u0027interpr\u00e9teur de Python. Cette vuln\u00e9rabilit\u00e9 peut \u00eatre exploit\u00e9e par un\nutilisateur mal intentionn\u00e9 via une chaine UTF-32/UCS-4 sp\u00e9cialement\nconstruite, et ex\u00e9cuter par ce biais du code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-4980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-4980"
    }
  ],
  "initial_release_date": "2006-10-10T00:00:00",
  "last_revision_date": "2006-10-23T00:00:00",
  "links": [
    {
      "title": "Traitement de la vuln\u00e9rabilit\u00e9 sur sourceforge :",
      "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-1198 du 23 octobre 2006 :",
      "url": "http://www.debian.org/security/2006/dsa-1198"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat du 10 octobre 2006 :",
      "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-359-1 du 09 octobre 2006 :",
      "url": "http://www.ubuntulinux.org/usn/usn-359-1"
    },
    {
      "title": "Mise \u00e0 jour \u00e0 partir de SVN :",
      "url": "http://svn.python.org/view/"
    }
  ],
  "reference": "CERTA-2006-AVI-435",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2006-10-10T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Debian.",
      "revision_date": "2006-10-23T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 permettant l\u0027ex\u00e9cution de code arbitraire \u00e0 distance a\n\u00e9t\u00e9 d\u00e9couverte dans Python\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Python",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Journal de mise \u00e0 jour Python",
      "url": null
    }
  ]
}

GHSA-7RJJ-4JXG-6HG5

Vulnerability from github – Published: 2022-05-03 03:16 – Updated: 2022-05-03 03:16

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-4980"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-10-10T04:06:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts.",
  "id": "GHSA-7rjj-4jxg-6hg5",
  "modified": "2022-05-03T03:16:34Z",
  "published": "2022-05-03T03:16:34Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4980"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
    },
    {
      "type": "WEB",
      "url": "https://issues.rpath.com/browse/RPL-702"
    },
    {
      "type": "WEB",
      "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
    },
    {
      "type": "WEB",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
    },
    {
      "type": "WEB",
      "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
    },
    {
      "type": "WEB",
      "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22276"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22297"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22303"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22357"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22358"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22379"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22448"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22487"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22512"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22531"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22639"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23680"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/31492"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1017019"
    },
    {
      "type": "WEB",
      "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2006/dsa-1197"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2006/dsa-1198"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/20376"
    },
    {
      "type": "WEB",
      "url": "http://www.ubuntu.com/usn/usn-359-1"
    },
    {
      "type": "WEB",
      "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/3940"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/5131"
    },
    {
      "type": "WEB",
      "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2006-4980

Vulnerability from fkie_nvd - Published: 2006-10-10 04:06 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc	Patch, Third Party Advisory
cve@mitre.org	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589	Third Party Advisory
cve@mitre.org	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162	Issue Tracking
cve@mitre.org	http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html	Third Party Advisory
cve@mitre.org	http://secunia.com/advisories/22276	Broken Link, Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/22297	Broken Link
cve@mitre.org	http://secunia.com/advisories/22303	Broken Link, Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/22357	Broken Link
cve@mitre.org	http://secunia.com/advisories/22358	Broken Link
cve@mitre.org	http://secunia.com/advisories/22379	Broken Link
cve@mitre.org	http://secunia.com/advisories/22448	Broken Link
cve@mitre.org	http://secunia.com/advisories/22487	Broken Link
cve@mitre.org	http://secunia.com/advisories/22512	Broken Link
cve@mitre.org	http://secunia.com/advisories/22531	Broken Link
cve@mitre.org	http://secunia.com/advisories/22639	Broken Link
cve@mitre.org	http://secunia.com/advisories/23680	Broken Link
cve@mitre.org	http://secunia.com/advisories/31492	Broken Link
cve@mitre.org	http://security.gentoo.org/glsa/glsa-200610-07.xml	Third Party Advisory
cve@mitre.org	http://securitytracker.com/id?1017019	Third Party Advisory, VDB Entry
cve@mitre.org	http://sourceforge.net/tracker/index.php?func=detail&aid=1541585&group_id=5470&atid=305470	Third Party Advisory
cve@mitre.org	http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm	Third Party Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1197	Third Party Advisory
cve@mitre.org	http://www.debian.org/security/2006/dsa-1198	Third Party Advisory
cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2006:181	Broken Link, Third Party Advisory
cve@mitre.org	http://www.novell.com/linux/security/advisories/2006_25_sr.html	Third Party Advisory
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2006-0713.html	Third Party Advisory
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2008-0629.html	Third Party Advisory
cve@mitre.org	http://www.securityfocus.com/archive/1/448244/100/100/threaded	Third Party Advisory, VDB Entry
cve@mitre.org	http://www.securityfocus.com/archive/1/456546/100/200/threaded	Third Party Advisory, VDB Entry
cve@mitre.org	http://www.securityfocus.com/bid/20376	Third Party Advisory, VDB Entry
cve@mitre.org	http://www.ubuntu.com/usn/usn-359-1	Third Party Advisory
cve@mitre.org	http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html	Third Party Advisory
cve@mitre.org	http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html	Third Party Advisory
cve@mitre.org	http://www.vupen.com/english/advisories/2006/3940	Broken Link
cve@mitre.org	http://www.vupen.com/english/advisories/2006/5131	Broken Link
cve@mitre.org	http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff	Third Party Advisory
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/29408	Broken Link, VDB Entry
cve@mitre.org	https://issues.rpath.com/browse/RPL-702	Third Party Advisory
cve@mitre.org	https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633	Third Party Advisory
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789	Broken Link
af854a3a-2127-422b-91ae-364da2661108	ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162	Issue Tracking
af854a3a-2127-422b-91ae-364da2661108	http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22276	Broken Link, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22297	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22303	Broken Link, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22357	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22358	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22379	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22448	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22487	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22512	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22531	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22639	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23680	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/31492	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200610-07.xml	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1017019	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://sourceforge.net/tracker/index.php?func=detail&aid=1541585&group_id=5470&atid=305470	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1197	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1198	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2006:181	Broken Link, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2006_25_sr.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2006-0713.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2008-0629.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/448244/100/100/threaded	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/456546/100/200/threaded	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/20376	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/usn-359-1	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/3940	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/5131	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/29408	Broken Link, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://issues.rpath.com/browse/RPL-702	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789	Broken Link

Impacted products

	Vendor	Product	Version
	python	python	*
	python	python	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9166CB74-7623-44E6-9E68-A00768A8A870",
              "versionEndExcluding": "2.3.6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6254AFCD-2750-4FD2-8139-8A4BC07B0D06",
              "versionEndExcluding": "2.4.4",
              "versionStartIncluding": "2.4.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de bufer en la funci\u00f3n repr en Python 2.3 hasta la 2.6 anterior al 22/08/2006 permite a un atacante dependiente del contexto provocar denegaci\u00f3n de servicio y posiblemente ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de  secuencias anchas hechas a mano del car\u00e1cter UTF-32/UCS-4 a ciertas secuencias de comandos."
    }
  ],
  "id": "CVE-2006-4980",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-10-10T04:06:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Issue Tracking"
      ],
      "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22276"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22297"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22303"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22357"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22358"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22379"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22448"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22487"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22512"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22531"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22639"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/23680"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/31492"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://securitytracker.com/id?1017019"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.debian.org/security/2006/dsa-1197"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.debian.org/security/2006/dsa-1198"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link",
        "Third Party Advisory"
      ],
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/20376"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.ubuntu.com/usn/usn-359-1"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/3940"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/5131"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link",
        "VDB Entry"
      ],
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://issues.rpath.com/browse/RPL-702"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking"
      ],
      "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22276"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22297"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22303"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22357"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22358"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22379"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22448"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22487"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22512"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22531"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/22639"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/23680"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://secunia.com/advisories/31492"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://securitytracker.com/id?1017019"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.debian.org/security/2006/dsa-1197"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.debian.org/security/2006/dsa-1198"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Third Party Advisory"
      ],
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/20376"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.ubuntu.com/usn/usn-359-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/3940"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/5131"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "VDB Entry"
      ],
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://issues.rpath.com/browse/RPL-702"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vendorComments": [
    {
      "comment": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
      "lastModified": "2007-03-14T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2006-4980

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-4980

Aliases

CVE-2006-4980

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-4980",
    "description": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts.",
    "id": "GSD-2006-4980",
    "references": [
      "https://www.suse.com/security/cve/CVE-2006-4980.html",
      "https://www.debian.org/security/2006/dsa-1198",
      "https://www.debian.org/security/2006/dsa-1197",
      "https://access.redhat.com/errata/RHSA-2008:0629",
      "https://access.redhat.com/errata/RHSA-2008:0525",
      "https://access.redhat.com/errata/RHSA-2008:0264",
      "https://access.redhat.com/errata/RHSA-2006:0713",
      "https://linux.oracle.com/cve/CVE-2006-4980.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-4980"
      ],
      "details": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts.",
      "id": "GSD-2006-4980",
      "modified": "2023-12-13T01:19:52.145914Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-4980",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "22303",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22303"
          },
          {
            "name": "DSA-1197",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2006/dsa-1197"
          },
          {
            "name": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html",
            "refsource": "CONFIRM",
            "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
          },
          {
            "name": "22487",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22487"
          },
          {
            "name": "20061011 rPSA-2006-0187-1 idle python",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
          },
          {
            "name": "22639",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22639"
          },
          {
            "name": "MDKSA-2006:181",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
          },
          {
            "name": "python-repr-bo(29408)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
          },
          {
            "name": "23680",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23680"
          },
          {
            "name": "22512",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22512"
          },
          {
            "name": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633",
            "refsource": "CONFIRM",
            "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
          },
          {
            "name": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff",
            "refsource": "CONFIRM",
            "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
          },
          {
            "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm",
            "refsource": "CONFIRM",
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
          },
          {
            "name": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470",
            "refsource": "CONFIRM",
            "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
          },
          {
            "name": "31492",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/31492"
          },
          {
            "name": "RHSA-2008:0629",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
          },
          {
            "name": "RHSA-2006:0713",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
          },
          {
            "name": "ADV-2006-5131",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/5131"
          },
          {
            "name": "1017019",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1017019"
          },
          {
            "name": "22357",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22357"
          },
          {
            "name": "DSA-1198",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2006/dsa-1198"
          },
          {
            "name": "22379",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22379"
          },
          {
            "name": "USN-359-1",
            "refsource": "UBUNTU",
            "url": "http://www.ubuntu.com/usn/usn-359-1"
          },
          {
            "name": "22448",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22448"
          },
          {
            "name": "SUSE-SR:2006:025",
            "refsource": "SUSE",
            "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
          },
          {
            "name": "20376",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/20376"
          },
          {
            "name": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162",
            "refsource": "CONFIRM",
            "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
          },
          {
            "name": "GLSA-200610-07",
            "refsource": "GENTOO",
            "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
          },
          {
            "name": "ADV-2006-3940",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/3940"
          },
          {
            "name": "https://issues.rpath.com/browse/RPL-702",
            "refsource": "CONFIRM",
            "url": "https://issues.rpath.com/browse/RPL-702"
          },
          {
            "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589",
            "refsource": "CONFIRM",
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
          },
          {
            "name": "20070110 VMware ESX server security updates",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
          },
          {
            "name": "22358",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22358"
          },
          {
            "name": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html",
            "refsource": "CONFIRM",
            "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
          },
          {
            "name": "20061001-01-P",
            "refsource": "SGI",
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
          },
          {
            "name": "22297",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22297"
          },
          {
            "name": "oval:org.mitre.oval:def:10789",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
          },
          {
            "name": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html",
            "refsource": "CONFIRM",
            "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
          },
          {
            "name": "22531",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22531"
          },
          {
            "name": "22276",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22276"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "2.4.4",
                "versionStartIncluding": "2.4.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "2.3.6",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4980"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1541585\u0026group_id=5470\u0026atid=305470"
            },
            {
              "name": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://zoehep.xent.com/~bsittler/python2.4-2.4.3_unicodeobject.c.diff"
            },
            {
              "name": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://launchpad.net/distros/ubuntu/+source/python2.4/+bug/56633"
            },
            {
              "name": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking"
              ],
              "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=208162"
            },
            {
              "name": "USN-359-1",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.ubuntu.com/usn/usn-359-1"
            },
            {
              "name": "20376",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/20376"
            },
            {
              "name": "22276",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/22276"
            },
            {
              "name": "22303",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/22303"
            },
            {
              "name": "https://issues.rpath.com/browse/RPL-702",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://issues.rpath.com/browse/RPL-702"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-229.htm"
            },
            {
              "name": "RHSA-2006:0713",
              "refsource": "REDHAT",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2006-0713.html"
            },
            {
              "name": "1017019",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://securitytracker.com/id?1017019"
            },
            {
              "name": "22357",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22357"
            },
            {
              "name": "22297",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22297"
            },
            {
              "name": "22358",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22358"
            },
            {
              "name": "22379",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22379"
            },
            {
              "name": "GLSA-200610-07",
              "refsource": "GENTOO",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200610-07.xml"
            },
            {
              "name": "22448",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22448"
            },
            {
              "name": "DSA-1197",
              "refsource": "DEBIAN",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.debian.org/security/2006/dsa-1197"
            },
            {
              "name": "22512",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22512"
            },
            {
              "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=391589"
            },
            {
              "name": "DSA-1198",
              "refsource": "DEBIAN",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.debian.org/security/2006/dsa-1198"
            },
            {
              "name": "SUSE-SR:2006:025",
              "refsource": "SUSE",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2006_25_sr.html"
            },
            {
              "name": "22531",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22531"
            },
            {
              "name": "22639",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22639"
            },
            {
              "name": "20061001-01-P",
              "refsource": "SGI",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc"
            },
            {
              "name": "22487",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/22487"
            },
            {
              "name": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.vmware.com/support/vi3/doc/esx-3069097-patch.html"
            },
            {
              "name": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.vmware.com/support/vi3/doc/esx-9986131-patch.html"
            },
            {
              "name": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://kb.vmware.com/KanisaPlatform/Publishing/882/5120103_f.SAL_Public.html"
            },
            {
              "name": "23680",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/23680"
            },
            {
              "name": "MDKSA-2006:181",
              "refsource": "MANDRIVA",
              "tags": [
                "Broken Link",
                "Third Party Advisory"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:181"
            },
            {
              "name": "RHSA-2008:0629",
              "refsource": "REDHAT",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2008-0629.html"
            },
            {
              "name": "31492",
              "refsource": "SECUNIA",
              "tags": [
                "Broken Link"
              ],
              "url": "http://secunia.com/advisories/31492"
            },
            {
              "name": "ADV-2006-3940",
              "refsource": "VUPEN",
              "tags": [
                "Broken Link"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/3940"
            },
            {
              "name": "ADV-2006-5131",
              "refsource": "VUPEN",
              "tags": [
                "Broken Link"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/5131"
            },
            {
              "name": "python-repr-bo(29408)",
              "refsource": "XF",
              "tags": [
                "Broken Link",
                "VDB Entry"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29408"
            },
            {
              "name": "oval:org.mitre.oval:def:10789",
              "refsource": "OVAL",
              "tags": [
                "Broken Link"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789"
            },
            {
              "name": "20070110 VMware ESX server security updates",
              "refsource": "BUGTRAQ",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/archive/1/456546/100/200/threaded"
            },
            {
              "name": "20061011 rPSA-2006-0187-1 idle python",
              "refsource": "BUGTRAQ",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/archive/1/448244/100/100/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2023-08-02T18:04Z",
      "publishedDate": "2006-10-10T04:06Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-4980 (GCVE-0-2006-4980)

CERTA-2007-AVI-026

Description

Solution

CERTA-2006-AVI-435

Description

Solution

GHSA-7RJJ-4JXG-6HG5

FKIE_CVE-2006-4980

GSD-2006-4980

Tags

Sightings

Nomenclature