← voltar
CVE-2006-2221

CVE-2006-2221

EPSS 0.4%
A third-party installer generation tool, possibly BitRock InstallBuilder, as used in products including Process-one ejabberd 1.1.1_1 and earlier, generates an installer that allows local users to cause a denial of service via a symlink attack on the bitrock_installer.log temporary file. NOTE: it is possible that this vulnerability is present in other products that use this installer.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://secunia.com/advisories/19928http://secunia.com/advisories/19954https://exchange.xforce.ibmcloud.com/vulnerabilities/26221https://exchange.xforce.ibmcloud.com/vulnerabilities/26261http://www.osvdb.org/25215http://www.securityfocus.com/archive/1/432719/100/0/threadedhttp://www.securityfocus.com/archive/1/432870/100/0/threadedhttp://www.securityfocus.com/bid/17804http://www.vupen.com/english/advisories/2006/1642http://www.vupen.com/english/advisories/2006/1659