exploits , vulnerabilities , articles , Links ELinks SMBClient Remote Command Execution Vulnerability

Title	Links ELinks SMBClient Remote Command Execution Vulnerability
Published	2006-10-18-12:00AM
Updated	2009-10-21-08:58PM
Class	Design Error
CVE	CVE-2006-5925
Remote	Yes
Local	No
Credit	Teemu Salmela is credited with the discovery of this vulnerability.
Vulnerable	Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 Trustix Operating System Enterprise Server 2.0 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 10.1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux AS 4 RedHat Desktop 4.0 OpenPKG OpenPKG 2.5 OpenPKG OpenPKG 2.4 OpenPKG OpenPKG 2.3 OpenPKG OpenPKG 2.2 OpenPKG OpenPKG 2.1 OpenPKG OpenPKG 2.0 OpenPKG OpenPKG Stable OpenPKG OpenPKG E1.0Solid OpenPKG OpenPKG Current OpenPKG OpenPKG 2Stable20061018 MandrakeSoft Linux Mandrake 2006.0 x86_64 MandrakeSoft Linux Mandrake 2006.0 MandrakeSoft Linux Mandrake 2007.0 x86_64 MandrakeSoft Linux Mandrake 2007.0 Links Links 2.1pre25 Links Links 2.1 pre24 Links Links 2.1 pre23 Links Links 2.1 pre16 Links Links 2.1 Links Links 1.00pre12 Gentoo Linux ELinks ELinks 0.11.1 ELinks ELinks 0.10.4 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia64 Debian Linux 3.1 ia32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1
Not Vulnerable	Links Links 2.1 pre26 Links Links 1.00pre19
Code	To exploit this issue, an attacker must entice an unsuspecting user to access a specially crafted web page.A proof-of-concept URI is available: /data/vulnerabilities/exploits/21082.html
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-11-26 ISC BIND 9 DNSSEC Query Response Additional Section Remote Cache Poisoning Vulnerability
• 2009-11-26 America Online ICQ ActiveX Control Remote Code Execution Vulnerability
• 2009-11-26 Novell eDirectory iMonitor HTTPSTK Buffer Overflow Vulnerability
• 2009-11-25 Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
• 2009-11-25 XM Easy Personal FTP Server File/Folder Remote Denial of Service Vulnerability
• 2009-11-25 Subscribe to Comments Prior to 2.1 Multiple Unspecified Cross Site Scripting Vulnerabilities
• 2009-11-25 Mozilla Firefox CVE-2009-3383 Multiple Remote Memory Corruption Vulnerabilities
• 2009-11-24 Subscribe to Comments WordPress Plugin Multiple Unspecified Input Validation Vulnerabilities
• 2009-11-24 RETIRED: Microsoft November 2009 Advance Notification Multiple Vulnerabilities
• 2009-11-24 Cacti Multiple HTML Injection Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Sat, 28 Nov 2009 02:36:40 +0000