Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1840

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-1840
Last Modified 21 Sep 2011 12:00:00
Published 19 Apr 2006 12:06:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1840

Summary

Multiple format string vulnerabilities in Empire Server before 4.3.1 allow attackers to cause a denial of service (crash) via the (1) load, (2) spy and (3) bomb functions.

Vulnerable Systems

Application

  • Empire Server 4.2.10

  • Empire Server 4.2.11

  • Empire Server 4.2.12

  • Empire Server 4.2.13

  • Empire Server 4.2.14

  • Empire Server 4.2.15

  • Empire Server 4.2.16

  • Empire Server 4.2.17

  • Empire Server 4.2.18

  • Empire Server 4.2.19

  • Empire Server 4.2.20

  • Empire Server 4.2.21

  • Empire Server 4.2.22

  • Empire Server 4.2.23

  • Empire Server 4.3.0


References

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=410001&group_id=24031

SECUNIA - 19674

XF - empireserver-unspecified(25863)

VUPEN - ADV-2006-1380

BID - 17585

OSVDB - 24700


Last Updated: 27 May 2016 10:42:14