JVN/CVE Demo: Cveinfos

CVE

Id: 22273
CVE No.: CVE-2006-6169
Status: Candidate
Description: Heap-based buffer overflow in the ask_outfile_name function in openfile.c for GnuPG (gpg) 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages with "C-escape" expansions, which cause the make_printable_string function to return a longer string than expected while constructing a prompt.
Phase: Assigned (20061129)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
215177	22273	CVE-2006-6169	BUGTRAQ:20061127 GnuPG 1.4 and 2.0 buffer overflow	View
215178	22273	CVE-2006-6169	URL:http://www.securityfocus.com/archive/1/archive/1/452829/100/0/threaded	View
215179	22273	CVE-2006-6169	BUGTRAQ:20061201 rPSA-2006-0224-1 gnupg	View
215180	22273	CVE-2006-6169	URL:http://www.securityfocus.com/archive/1/archive/1/453253/100/100/threaded	View
215181	22273	CVE-2006-6169	MLIST:[gnupg-announce] 20061127 GnuPG 1.4 and 2.0 buffer overflow	View
215182	22273	CVE-2006-6169	URL:http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000241.html	View
215183	22273	CVE-2006-6169	MISC:https://bugs.g10code.com/gnupg/issue728	View
215184	22273	CVE-2006-6169	CONFIRM:https://issues.rpath.com/browse/RPL-826	View
215185	22273	CVE-2006-6169	CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2007-047.htm	View
215186	22273	CVE-2006-6169	DEBIAN:DSA-1231	View
215187	22273	CVE-2006-6169	URL:http://www.debian.org/security/2006/dsa-1231	View
215188	22273	CVE-2006-6169	GENTOO:GLSA-200612-03	View
215189	22273	CVE-2006-6169	URL:http://security.gentoo.org/glsa/glsa-200612-03.xml	View
215190	22273	CVE-2006-6169	MANDRIVA:MDKSA-2006:221	View
215191	22273	CVE-2006-6169	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:221	View
215192	22273	CVE-2006-6169	OPENPKG:OpenPKG-SA-2006.037	View
215193	22273	CVE-2006-6169	URL:http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.037.html	View
215194	22273	CVE-2006-6169	REDHAT:RHSA-2006:0754	View
215195	22273	CVE-2006-6169	URL:http://www.redhat.com/support/errata/RHSA-2006-0754.html	View
215196	22273	CVE-2006-6169	SGI:20061201-01-P	View
215197	22273	CVE-2006-6169	URL:ftp://patches.sgi.com/support/free/security/advisories/20061201-01-P.asc	View
215198	22273	CVE-2006-6169	SUSE:SUSE-SA:2006:075	View
215199	22273	CVE-2006-6169	URL:http://lists.suse.com/archive/suse-security-announce/2006-Dec/0004.html	View
215200	22273	CVE-2006-6169	TRUSTIX:2006-0068	View
215201	22273	CVE-2006-6169	URL:http://www.trustix.org/errata/2006/0068/	View
215202	22273	CVE-2006-6169	UBUNTU:USN-389-1	View
215203	22273	CVE-2006-6169	URL:http://www.ubuntu.com/usn/usn-389-1	View
215204	22273	CVE-2006-6169	UBUNTU:USN-393-2	View
215205	22273	CVE-2006-6169	URL:http://www.ubuntu.com/usn/usn-393-2	View
215206	22273	CVE-2006-6169	BID:21306	View
215207	22273	CVE-2006-6169	URL:http://www.securityfocus.com/bid/21306	View
215208	22273	CVE-2006-6169	OVAL:oval:org.mitre.oval:def:11228	View
215209	22273	CVE-2006-6169	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11228	View
215210	22273	CVE-2006-6169	VUPEN:ADV-2006-4736	View
215211	22273	CVE-2006-6169	URL:http://www.vupen.com/english/advisories/2006/4736	View
215212	22273	CVE-2006-6169	SECTRACK:1017291	View
215213	22273	CVE-2006-6169	URL:http://securitytracker.com/id?1017291	View
215214	22273	CVE-2006-6169	SECUNIA:23094	View
215215	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23094	View
215216	22273	CVE-2006-6169	SECUNIA:23110	View
215217	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23110	View
215218	22273	CVE-2006-6169	SECUNIA:23171	View
215219	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23171	View
215220	22273	CVE-2006-6169	SECUNIA:23146	View
215221	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23146	View
215222	22273	CVE-2006-6169	SECUNIA:23161	View
215223	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23161	View
215224	22273	CVE-2006-6169	SECUNIA:23250	View
215225	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23250	View
215226	22273	CVE-2006-6169	SECUNIA:23269	View
215227	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23269	View
215228	22273	CVE-2006-6169	SECUNIA:23299	View
215229	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23299	View
215230	22273	CVE-2006-6169	SECUNIA:23303	View
215231	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23303	View
215232	22273	CVE-2006-6169	SECUNIA:23284	View
215233	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23284	View
215234	22273	CVE-2006-6169	SECUNIA:23513	View
215235	22273	CVE-2006-6169	URL:http://secunia.com/advisories/23513	View
215236	22273	CVE-2006-6169	SECUNIA:24047	View
215237	22273	CVE-2006-6169	URL:http://secunia.com/advisories/24047	View
215238	22273	CVE-2006-6169	SREASON:1927	View
215239	22273	CVE-2006-6169	URL:http://securityreason.com/securityalert/1927	View
215240	22273	CVE-2006-6169	XF:gnupg-openfile-bo(30550)	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.48 MB
Controller render start	2.34 MB
View render complete	2.84 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.78
Event: Controller.initialize	0.02
Event: Controller.startup	0.07
Controller action	437.07
Event: Controller.beforeRender	6.87
» Processing toolbar data	6.77
Rendering View	24.69
» Event: View.beforeRender	0.03
» Rendering APP/View/Cveinfos/view.ctp	23.34
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.79
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.19
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/22273
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/22273
Remote Port	54633
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	18.191.165.252
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	18.191.165.252
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	18.191.165.252
Unique Id	aBdntASIe-6mVLhvZ5NgRgAAAgs
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	18.191.165.252
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	18.191.165.252
Redirect Unique Id	aBdntASIe-6mVLhvZ5NgRgAAAgs
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	18.191.165.252
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	18.191.165.252
Redirect Redirect Unique Id	aBdntASIe-6mVLhvZ5NgRgAAAgs
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1746364340.6132
Request Time	1746364340

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files