Vulnerability Details : CVE-2006-0582
Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors.
Products affected by CVE-2006-0582
- cpe:2.3:a:kth:heimdal:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.7.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.7.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:kth:heimdal:0.7.1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-0582
0.09%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 22 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-0582
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
2.1
|
LOW | AV:L/AC:L/Au:N/C:N/I:P/A:N |
3.9
|
2.9
|
NIST |
References for CVE-2006-0582
-
http://www.ubuntu.com/usn/usn-253-1
-
http://www.securityfocus.com/bid/16524
Patch
-
http://www.debian.org/security/2006/dsa-977
[SECURITY] [DSA 977-1] New heimdal packages fix several vulnerabilitiesPatch;Vendor Advisory
-
http://secunia.com/advisories/18806
About Secunia Research | FlexeraPatch;Vendor Advisory
-
http://secunia.com/advisories/18894
About Secunia Research | FlexeraPatch;Vendor Advisory
-
http://secunia.com/advisories/19302
About Secunia Research | FlexeraPatch;Vendor Advisory
-
http://secunia.com/advisories/19005
About Secunia Research | FlexeraPatch;Vendor Advisory
-
http://www.osvdb.org/22986
404 Not Found
-
http://securitytracker.com/id?1015591
GoDaddy Domain Name Search
-
http://www.stacken.kth.se/lists/heimdal-discuss/2006-02/msg00028.html
Heimdal 0.7.2 and 0.6.6
-
http://www.vupen.com/english/advisories/2006/0628
Site en constructionVendor Advisory
-
https://usn.ubuntu.com/247-1/
404: Page not found | Ubuntu
-
http://secunia.com/advisories/18733
About Secunia Research | FlexeraPatch;Vendor Advisory
-
http://www.gentoo.org/security/en/glsa/glsa-200603-14.xml
Heimdal: rshd privilege escalation (GLSA 200603-14) — Gentoo securityPatch;Vendor Advisory
-
http://www.pdc.kth.se/heimdal/advisory/2006-02-06/
404 Not foundPatch
-
http://www.securityfocus.com/archive/1/426043/100/0/threaded
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/24532
-
http://www.vupen.com/english/advisories/2006/0456
Site en constructionVendor Advisory
Jump to