exploitDog

CVE-2006-4842

Опубликовано: 12 окт. 2006

Источник: ubuntu

Приоритет: medium

CVSS2: 3.6

Описание

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.

Релиз	Статус	Примечание
dapper	not-affected
devel	not-affected
edgy	not-affected
feisty	not-affected
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2006-4842

3.6 Low

CVSS2

Связанные уязвимости

CVE-2006-4842

redhat

больше 19 лет назад

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.

CVE-2006-4842

nvd

больше 19 лет назад

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.

CVE-2006-4842

debian

больше 19 лет назад

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in S ...

GHSA-c7x4-3f9v-h9qf

github

почти 4 года назад

The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.

3.6 Low

CVSS2