CVE-2006-4573

9 documents8 sources
Severity
2.6LOW
EPSS
1.2%
top 21.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
GNU Screen
Timeline
PublishedOct 24
Latest updateMay 1

Description

Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.

CVSS vector

AV:N/AC:H/C:N/I:N/A:PExploitability: 4.9 | Impact: 2.9

Affected Packages2 packages

Debianscreen< 4.0.3-0.1+3
NVDgnu/screen4.0.2

Patches

Patch: lists.gnu.orgPatch: lists.gnu.org

🔴Vulnerability Details

3
GHSA
GHSA-5v6p-jx73-rq6x: Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding2022-05-01
CVEList
CVE-2006-4573: Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding2006-10-24
OSV
CVE-2006-4573: Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding2006-10-24

📋Vendor Advisories

3
Ubuntu
screen vulnerability2006-11-01
Red Hat
screen buffer overflow2006-10-23
Debian
CVE-2006-4573: screen - Multiple unspecified vulnerabilities in the "utf8 combining characters handling"...2006

💬Community

2
Bugzilla
CVE-2006-4573 screen buffer overflow2006-10-24
Bugzilla
CVE-2006-4573 screen buffer overflow2006-10-24
CVE-2006-4573 (LOW CVSS 2.6) | Multiple unspecified vulnerabilitie | cvebase.io