NVD

Id
62682  
Name
CVE-2006-4024  
Description
The FESTAHES_Load function in pce/hes.c in Festalon 0.5.0 through 0.5.5 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative LoadAddr value in a HES file, which is used as an offset in a memcpy operation and leads to a buffer underflow.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-08-08  
Modified Date
2011-03-07  
Seq
2006-4024  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
325776 62682 CVE-2006-4024 http://aluigi.altervista.org/adv/festahc-adv.txt  View
325777 62682 CVE-2006-4024 19402  View
325778 62682 CVE-2006-4024 ADV-2006-3177  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
58780 JVNDB-2006-001046 Festalon の FESTAHES_Load 関数におけるサービス運用妨害 (DoS) の脆弱性 Festalon の pce/hes.c の FESTAHES_Load 関数には、サービス運用妨害 (クラッシュ) 状態となる、および任意のコードを実行される脆弱性が存在します。 CVE-2006-4024 20126 CVE-2006-4024 62682 7.5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001046.html 2006-08-08 2012-06-26 View