← back
CVE-2006-2366

CVE-2006-2366

EPSS 1.2%
ircp_io.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=366484http://secunia.com/advisories/20302https://exchange.xforce.ibmcloud.com/vulnerabilities/26686http://www.securityfocus.com/bid/17921