CVE-2006-0855
published 2006-02-23CVE-2006-0855: Stack-based buffer overflow in the fullpath function in misc.c for zoo 2.10 and earlier, as used in products such as Barracuda Spam Firewall, allows…
PriorityP424medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
4.44%
90.2th percentile
Stack-based buffer overflow in the fullpath function in misc.c for zoo 2.10 and earlier, as used in products such as Barracuda Spam Firewall, allows user-assisted attackers to execute arbitrary code via a crafted ZOO file that causes the combine function to return a longer string than expected.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rahul_dhesi | zoo | <= 2.10 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2006-04/0061.htmlhttp://secunia.com/advisories/19002http://secunia.com/advisories/19130http://secunia.com/advisories/19148http://secunia.com/advisories/19166http://secunia.com/advisories/19408http://secunia.com/advisories/19514http://securityreason.com/securityalert/546http://securitytracker.com/id?1015668http://securitytracker.com/id?1015866http://www.debian.org/security/2006/dsa-991http://www.gentoo.org/security/en/glsa/glsa-200603-05.xmlhttp://www.guay-leroux.com/projects/barracuda-advisory-ZOO.txthttp://www.guay-leroux.com/projects/zoo-advisory.txthttp://www.novell.com/linux/security/advisories/2006_05_sr.htmlhttp://www.novell.com/linux/security/advisories/2006_06_sr.htmlhttp://www.securityfocus.com/archive/1/425887/100/0/threadedhttp://www.securityfocus.com/bid/16790http://www.vupen.com/english/advisories/2006/0705http://www.vupen.com/english/advisories/2006/1220https://exchange.xforce.ibmcloud.com/vulnerabilities/24904http://archives.neohapsis.com/archives/bugtraq/2006-04/0061.htmlhttp://secunia.com/advisories/19002http://secunia.com/advisories/19130http://secunia.com/advisories/19148http://secunia.com/advisories/19166http://secunia.com/advisories/19408http://secunia.com/advisories/19514http://securityreason.com/securityalert/546http://securitytracker.com/id?1015668http://securitytracker.com/id?1015866http://www.debian.org/security/2006/dsa-991http://www.gentoo.org/security/en/glsa/glsa-200603-05.xmlhttp://www.guay-leroux.com/projects/barracuda-advisory-ZOO.txthttp://www.guay-leroux.com/projects/zoo-advisory.txthttp://www.novell.com/linux/security/advisories/2006_05_sr.htmlhttp://www.novell.com/linux/security/advisories/2006_06_sr.htmlhttp://www.securityfocus.com/archive/1/425887/100/0/threadedhttp://www.securityfocus.com/bid/16790http://www.vupen.com/english/advisories/2006/0705http://www.vupen.com/english/advisories/2006/1220https://exchange.xforce.ibmcloud.com/vulnerabilities/24904
2006-02-23
Published