Vulnerabilities > CVE-2006-4655

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
sco
sun
exploit available
NVD
Published: 2006-09-09
Updated: 2024-11-21

Summary

Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.

Vulnerable Configurations

Part Description Count
OS
Sco
1
OS
Sun
6

Exploit-Db

  • descriptionX11R6. CVE-2006-4655. Local exploit for solaris platform
    idEDB-ID:2360
    last seen2016-01-31
    modified2006-09-13
    published2006-09-13
    reporterMarco Ivaldi
    sourcehttps://www.exploit-db.com/download/2360/
    titleX11R6 <= 6.4 XKEYBOARD - Local Buffer Overflow Exploit solaris/sparc
  • descriptionX11R6. CVE-2006-4655. Local exploit for solaris platform
    idEDB-ID:2331
    last seen2016-01-31
    modified2006-09-08
    published2006-09-08
    reporterRISE Security
    sourcehttps://www.exploit-db.com/download/2331/
    titleX11R6 <= 6.4 XKEYBOARD - Local Buffer Overflow Exploit solaris/x86

Oval

accepted2007-09-27T08:57:41.950-04:00
classvulnerability
contributors
namePai Peng
organizationOpsware, Inc.
definition_extensions
  • commentSolaris 8 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1539
  • commentSolaris 9 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1457
  • commentSolaris 10 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1440
  • commentSolaris 8 (x86) is installed
    ovaloval:org.mitre.oval:def:2059
  • commentSolaris 9 (x86) is installed
    ovaloval:org.mitre.oval:def:1683
  • commentSolaris 10 (x86) is installed
    ovaloval:org.mitre.oval:def:1926
descriptionBuffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
familyunix
idoval:org.mitre.oval:def:1798
statusaccepted
submitted2007-08-10T12:25:24.000-04:00
titleBuffer Overflow Vulnerability in libX11
version36

References