Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1865

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1865
Last Modified 04 Feb 2011 12:00:00
Published 21 Apr 2006 07:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1865

Summary

Argument injection vulnerability in Beagle before 0.2.5 allows attackers to execute arbitrary commands via crafted filenames that inject command line arguments when Beagle launches external helper applications while indexing.

Vulnerable Systems

Application

  • Beagle-project Beagle 0.2.4


References

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189282

XF - beagle-indexing-command-execution(26104)

BID - 17611

OSVDB - 24938

SUSE - SUSE-SR:2006:009

SECUNIA - 19897

SECUNIA - 19781

SECUNIA - 19778

MISC - http://scary.beasts.org/security/CESA-2006-002.html

FEDORA - FEDORA-2006-440


Last Updated: 27 May 2016 10:42:15