CVE-2006-4250
published 2007-04-10CVE-2006-4250: Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
PriorityP425medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
1.33%
67.4th percentile
Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | man-db | < man-db 2.4.3-5 (bookworm) | man-db 2.4.3-5 (bookworm) |
| man-db_project | man-db | >= 0 < 2.4.3-5 | 2.4.3-5 |
| man-db_project | man-db | >= 0 < 2.4.3-5 | 2.4.3-5 |
| man-db_project | man-db | >= 0 < 2.4.3-5 | 2.4.3-5 |
| man-db_project | man-db | >= 0 < 2.4.3-5 | 2.4.3-5 |
CVSS provenance
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv4.6MEDIUM
vendor_debian4.6MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wfpc-rjx4-qm3j: Buffer overflow in man and mandb (man-db) 2
ghsa_unreviewed·2022-05-01
CVE-2006-4250 [MEDIUM] GHSA-wfpc-rjx4-qm3j: Buffer overflow in man and mandb (man-db) 2
Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
OSV
CVE-2006-4250: Buffer overflow in man and mandb (man-db) 2
osv·2007-04-10·CVSS 4.6
CVE-2006-4250 [MEDIUM] CVE-2006-4250: Buffer overflow in man and mandb (man-db) 2
Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
Debian
CVE-2006-4250: man-db - Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users t...
vendor_debian·2006·CVSS 4.6
CVE-2006-4250 [MEDIUM] CVE-2006-4250: man-db - Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users t...
Buffer overflow in man and mandb (man-db) 2.4.3 and earlier allows local users to execute arbitrary code via crafted arguments to the -H flag.
Scope: local
bookworm: resolved (fixed in 2.4.3-5)
bullseye: resolved (fixed in 2.4.3-5)
forky: resolved (fixed in 2.4.3-5)
sid: resolved (fixed in 2.4.3-5)
trixie: resolved (fixed in 2.4.3-5)
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/24801http://secunia.com/advisories/24828http://secunia.com/advisories/24995http://www.debian.org/security/2007/dsa-1278http://www.novell.com/linux/security/advisories/2007_007_suse.htmlhttp://www.securityfocus.com/bid/23355http://www.vupen.com/english/advisories/2007/1294http://www.vupen.com/english/advisories/2007/1295https://exchange.xforce.ibmcloud.com/vulnerabilities/33508http://secunia.com/advisories/24801http://secunia.com/advisories/24828http://secunia.com/advisories/24995http://www.debian.org/security/2007/dsa-1278http://www.novell.com/linux/security/advisories/2007_007_suse.htmlhttp://www.securityfocus.com/bid/23355http://www.vupen.com/english/advisories/2007/1294http://www.vupen.com/english/advisories/2007/1295https://exchange.xforce.ibmcloud.com/vulnerabilities/33508
2007-04-10
Published