CVE-2006-6293
published 2006-12-05CVE-2006-6293: Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM…
PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
15.85%
96.5th percentile
Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f-prot | f-prot_antivirus | <= 4.6.6 | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
| f-prot | f-prot_antivirus | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h649-79ch-f7x4: Multiple unspecified vulnerabilities in FRISK Software F-Prot Antivirus before 4
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2006-6294 [HIGH] GHSA-h649-79ch-f7x4: Multiple unspecified vulnerabilities in FRISK Software F-Prot Antivirus before 4
Multiple unspecified vulnerabilities in FRISK Software F-Prot Antivirus before 4.6.7 have unspecified impact and attack vectors. NOTE: this might be related to CVE-2006-6293, but it is not clear due to the vagueness of the report.
GHSA
GHSA-vvmj-m42h-hf7v: Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2006-6293 [HIGH] CWE-119 GHSA-vvmj-m42h-hf7v: Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4
Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294.
No detection rules found.
No writeups or analysis indexed.
http://gleg.net/fprot.txthttp://gleg.net/vulndisco_meta.shtmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051096.htmlhttp://secunia.com/advisories/22879http://secunia.com/advisories/23328http://security.gentoo.org/glsa/glsa-200612-12.xmlhttp://securitytracker.com/id?1017331http://www.f-prot.com/news/gen_news/061201_release_unix467.htmlhttp://www.osvdb.org/30406http://www.securityfocus.com/archive/1/453475/100/0/threadedhttp://www.securityfocus.com/bid/21086http://www.vupen.com/english/advisories/2006/4830https://www.exploit-db.com/exploits/2893http://gleg.net/fprot.txthttp://gleg.net/vulndisco_meta.shtmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051096.htmlhttp://secunia.com/advisories/22879http://secunia.com/advisories/23328http://security.gentoo.org/glsa/glsa-200612-12.xmlhttp://securitytracker.com/id?1017331http://www.f-prot.com/news/gen_news/061201_release_unix467.htmlhttp://www.osvdb.org/30406http://www.securityfocus.com/archive/1/453475/100/0/threadedhttp://www.securityfocus.com/bid/21086http://www.vupen.com/english/advisories/2006/4830https://www.exploit-db.com/exploits/2893
2006-12-05
Published