CVE-2006-1296
published 2006-03-19CVE-2006-1296: Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to gain privileges via a malicious beagle-info program in the current working…
PriorityP424high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.47%
70.5th percentile
Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to gain privileges via a malicious beagle-info program in the current working directory, or possibly directories specified in the PATH.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| beagle-project | beagle | — | — |
| beagle_project | beagle | >= 0 < 0.2.3-1 | 0.2.3-1 |
| beagle_project | beagle | >= 0 < 0.2.3-1 | 0.2.3-1 |
| beagle_project | beagle | >= 0 < 0.2.3-1 | 0.2.3-1 |
| beagle_project | beagle | >= 0 < 0.2.3-1 | 0.2.3-1 |
| debian | beagle | < beagle 0.2.3-1 (bookworm) | beagle 0.2.3-1 (bookworm) |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-g3jf-p9mm-243f: Untrusted search path vulnerability in Beagle 0
ghsa_unreviewed·2022-05-01
CVE-2006-1296 [HIGH] GHSA-g3jf-p9mm-243f: Untrusted search path vulnerability in Beagle 0
Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to gain privileges via a malicious beagle-info program in the current working directory, or possibly directories specified in the PATH.
OSV
CVE-2006-1296: Untrusted search path vulnerability in Beagle 0
osv·2006-03-19·CVSS 7.5
CVE-2006-1296 [HIGH] CVE-2006-1296: Untrusted search path vulnerability in Beagle 0
Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to gain privileges via a malicious beagle-info program in the current working directory, or possibly directories specified in the PATH.
Debian
CVE-2006-1296: beagle - Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to...
vendor_debian·2006·CVSS 7.5
CVE-2006-1296 [HIGH] CVE-2006-1296: beagle - Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to...
Untrusted search path vulnerability in Beagle 0.2.2.1 might allow local users to gain privileges via a malicious beagle-info program in the current working directory, or possibly directories specified in the PATH.
Scope: local
bookworm: resolved (fixed in 0.2.3-1)
bullseye: resolved (fixed in 0.2.3-1)
forky: resolved (fixed in 0.2.3-1)
sid: resolved (fixed in 0.2.3-1)
trixie: resolved (fixed in 0.2.3-1)
No detection rules found.
No public exploits indexed.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=357392http://secunia.com/advisories/19278http://secunia.com/advisories/19336http://www.osvdb.org/23942http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00047.htmlhttp://www.securityfocus.com/bid/17195https://exchange.xforce.ibmcloud.com/vulnerabilities/25303http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=357392http://secunia.com/advisories/19278http://secunia.com/advisories/19336http://www.osvdb.org/23942http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00047.htmlhttp://www.securityfocus.com/bid/17195https://exchange.xforce.ibmcloud.com/vulnerabilities/25303
2006-03-19
Published