Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2006-2916

Опубликовано: 15 июн. 2006
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6
CVSS3: 7.8

Описание

artswrapper in aRts, when running setuid root on Linux 2.6.0 or later versions, does not check the return value of the setuid function call, which allows local users to gain root privileges by causing setuid to fail, which prevents artsd from dropping privileges.

РелизСтатусПримечание
dapper

not-affected

devel

DNE

edgy

not-affected

feisty

not-affected

gutsy

not-affected

hardy

not-affected

intrepid

not-affected

jaunty

DNE

karmic

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

0.6.6-8
edgy

ignored

end of life, was needed
feisty

released

0.6.6-8
gutsy

released

0.6.6-8
hardy

released

0.6.6-8
intrepid

released

0.6.6-8
jaunty

released

0.6.6-8
karmic

released

0.6.6-8
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 36%
0.00145
Низкий

6 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2006-2916

CVSS3: 6.7
redhat
больше 1 года назад

artswrapper in aRts, when running setuid root on Linux 2.6.0 or later versions, does not check the return value of the setuid function call, which allows local users to gain root privileges by causing setuid to fail, which prevents artsd from dropping privileges.

nvd логотип

CVE-2006-2916

CVSS3: 7.8
nvd
около 19 лет назад

artswrapper in aRts, when running setuid root on Linux 2.6.0 or later versions, does not check the return value of the setuid function call, which allows local users to gain root privileges by causing setuid to fail, which prevents artsd from dropping privileges.

debian логотип

CVE-2006-2916

CVSS3: 7.8
debian
около 19 лет назад

artswrapper in aRts, when running setuid root on Linux 2.6.0 or later ...

github логотип

GHSA-4532-mwp5-jccg

CVSS3: 7.8
github
больше 3 лет назад

artswrapper in aRts, when running setuid root on Linux 2.6.0 or later versions, does not check the return value of the setuid function call, which allows local users to gain root privileges by causing setuid to fail, which prevents artsd from dropping privileges.

fstec логотип

BDU:2015-09515

fstec
около 19 лет назад

Уязвимости операционной системы Gentoo Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 36%
0.00145
Низкий

6 Medium

CVSS2

7.8 High

CVSS3