CVE-2006-6235

Published Dec 7, 2006

Last updated 6 years ago

CVSS info 10.0

Overview

Description: A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated stack memory.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Vendor comments

Red HatRed Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76CAFD24-E53F-488C-BD9F-BE31D30828AD"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5D3628A-3BDD-4C6F-AE7D-C81FC3EE1630"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74589745-A9A6-44DB-B4F0-B61B663ECA21"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB2B99CB-5950-42E7-ACD5-38457CBE9095"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D81AF47A-56BA-4D90-A4D4-D7A37333A117"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E55DBB73-EF6C-4C46-9E5A-7C35D7FD190C"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "205C014A-236B-44CF-A92D-B4D6392FF9A7"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F412ECF0-DA84-47B8-98FD-06019C9E63E0"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE04D970-A467-4648-B99C-895BA8BEE79B"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C79DC753-35CB-46FA-BDE4-650BD1730505"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F54DA969-ABAA-4021-9EC3-C30A45D1A7ED"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1B68B13-DC1F-46AB-B360-D04E48A0939F"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE65D839-7798-4DE4-AA89-765E91FC6A42"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B256D201-D3E1-472F-8B4F-8D6D5D763003"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.9.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C1151E8-E9D3-4244-9765-B06D07848AFF"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.9.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "345FBFB9-7FA3-4F7D-B605-A38054744F4B"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.9.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "859126BF-7327-4C54-AE2E-4A961911C937"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7461ED0D-1DC2-4019-BEC0-2E9AF2724371"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C3FA38E-5BF1-4CDA-AB4F-19150FD3EE10"
          },
          {
            "criteria": "cpe:2.3:a:gpg4win:gpg4win:1.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "047F3D25-1795-494A-93AC-9AF80AC72680"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:4.0:*:advanced_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9440B25-D206-4914-9557-B5F030890DEC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:4.0:*:enterprise_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9933557-3BCA-4D92-AD4F-27758A0D3347"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:4.0:*:workstation:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10A60552-15A5-4E95-B3CE-99A4B26260C1"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF3BBBC3-3EF9-4E24-9DE2-627E172A5473"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D74A418-50F0-42C0-ABBC-BBBE718FF025"
          },
          {
            "criteria": "cpe:2.3:o:redhat:fedora_core:core_5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA3B94B6-A5E4-4432-802E-BFAD7F3B5B4C"
          },
          {
            "criteria": "cpe:2.3:o:redhat:fedora_core:core6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E007512B-2A01-4915-82D1-EDDEE8ED3190"
          },
          {
            "criteria": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "777F9EC0-2919-45CA-BFF8-78A02537C513"
          },
          {
            "criteria": "cpe:2.3:o:rpath:linux:1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2B66383-4124-4579-BC8E-36DBE7ABB543"
          },
          {
            "criteria": "cpe:2.3:o:slackware:slackware_linux:11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74022B69-6557-4746-9080-24E4DDA44026"
          },
          {
            "criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADE3B4BE-7B43-47C7-823A-C019DF12498F"
          },
          {
            "criteria": "cpe:2.3:o:ubuntu:ubuntu_linux:6.06:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD9460AD-229A-4DC2-BFBA-818640A464AD"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Vendor comments

Configurations

References