CVE-2006-2494
published 2006-05-20CVE-2006-2494: Stack-based buffer overflow in IntelliTamper 2.07 allows remote attackers to execute arbitrary code via a crafted .map file.
PriorityP430medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
5.23%
91.5th percentile
Stack-based buffer overflow in IntelliTamper 2.07 allows remote attackers to execute arbitrary code via a crafted .map file.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| intellitamper | intellitamper | — | — |
| intellitamper | intellitamper | — | — |
| intellitamper | intellitamper | — | — |
| lacaveprods | intellitamper | <= 2.07 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pfmp-4g6v-g76x: Stack-based buffer overflow in IntelliTamper 2
ghsa_unreviewed·2022-05-17·CVSS 5.1
CVE-2008-5755 [MEDIUM] CWE-119 GHSA-pfmp-4g6v-g76x: Stack-based buffer overflow in IntelliTamper 2
Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows remote attackers to execute arbitrary code via a MAP file containing a long URL, possibly a related issue to CVE-2006-2494.
GHSA
GHSA-pp2x-6q67-cgr6: Stack-based buffer overflow in the HTML parser in IntelliTamper 2
ghsa_unreviewed·2022-05-01·CVSS 5.1
CVE-2008-3360 [MEDIUM] CWE-119 GHSA-pp2x-6q67-cgr6: Stack-based buffer overflow in the HTML parser in IntelliTamper 2
Stack-based buffer overflow in the HTML parser in IntelliTamper 2.0.7 allows remote attackers to execute arbitrary code via a long URL in the HREF attribute of an A element, a different vulnerability than CVE-2006-2494.
GHSA
GHSA-7ch7-c976-7hc4: Stack-based buffer overflow in IntelliTamper 2
ghsa_unreviewed·2022-05-01
CVE-2006-2494 [MEDIUM] GHSA-7ch7-c976-7hc4: Stack-based buffer overflow in IntelliTamper 2
Stack-based buffer overflow in IntelliTamper 2.07 allows remote attackers to execute arbitrary code via a crafted .map file.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/20172http://securitytracker.com/id?1016117http://www.securityfocus.com/bid/18039http://www.vupen.com/english/advisories/2006/1860http://www.vupen.com/english/advisories/2008/2120https://exchange.xforce.ibmcloud.com/vulnerabilities/26551https://www.exploit-db.com/exploits/1806http://secunia.com/advisories/20172http://securitytracker.com/id?1016117http://www.securityfocus.com/bid/18039http://www.vupen.com/english/advisories/2006/1860http://www.vupen.com/english/advisories/2008/2120https://exchange.xforce.ibmcloud.com/vulnerabilities/26551https://www.exploit-db.com/exploits/1806
2006-05-20
Published