CVE-2006-2091
published 2006-04-29CVE-2006-2091: admin.php in Virtual War (VWar) 1.5 and versions before 1.2 allows remote attackers to obtain sensitive information via an invalid vwar_root parameter, which…
PriorityP410medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.38%
68.6th percentile
admin.php in Virtual War (VWar) 1.5 and versions before 1.2 allows remote attackers to obtain sensitive information via an invalid vwar_root parameter, which reveals the path in an error message.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
| vwar | virtual_war | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Google Earth 4.0.2091 (Beta) - '.KML'/'.KMZ' Buffer Overflow
exploitdb·2006-09-14
CVE-2006-7157 Google Earth 4.0.2091 (Beta) - '.KML'/'.KMZ' Buffer Overflow
Google Earth 4.0.2091 (Beta) - '.KML'/'.KMZ' Buffer Overflow
---
// source: https://www.securityfocus.com/bid/20464/info
Google Earth is prone to a buffer-overflow vulnerability because the application to properly verify the size of user-supplied data before copying it into an insufficiently sized process buffer.
This issue allows remote attackers to execute arbitrary machine code in the context of the user running the affected application. Failed exploit attempts will likely crash applications, denying service to legitimate users.
Google Earth version v4.0.2091(beta) is vulnerable to this issue.
///////////////////////////////////////////////
// Google Earth (kml & kmz files) buffer overflow
// by JAAScois [ http://www.jaascois.com ]
// Test on: Google Earth v4.0.2091(beta) Sep 14 2
Exploit-DB
BT Voyager 2091 (Wireless ADSL) - Multiple Vulnerabilities
exploitdb·2006-07-18
CVE-2006-3561 BT Voyager 2091 (Wireless ADSL) - Multiple Vulnerabilities
BT Voyager 2091 (Wireless ADSL) - Multiple Vulnerabilities
---
BT Voyager 2091 (Wireless ADSL) Multiple Vulnerabilities
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/2034.tgz (07182006-btvoyager.tgz)
# milw0rm.com [2006-07-18]
No writeups or analysis indexed.
http://securityreason.com/securityalert/818http://www.securityfocus.com/archive/1/431900/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/26006http://securityreason.com/securityalert/818http://www.securityfocus.com/archive/1/431900/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/26006
2006-04-29
Published