← volver
CVE-2006-2366

CVE-2006-2366

EPSS 1.2%
ircp_io.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=366484http://secunia.com/advisories/20302https://exchange.xforce.ibmcloud.com/vulnerabilities/26686http://www.securityfocus.com/bid/17921