Integer Overflow in Banner Component of FreeBSD, NetBSD, and OpenBSD
CVE-2006-6397

Currently unrated

Key Information:

Vendor: Netbsd
Status: Netbsd; FreeBSD; OpenBSD
Vendor: CVE Published:; 8 December 2006

What is CVE-2006-6397?

The vulnerability is characterized by an integer overflow in the banner component across FreeBSD, NetBSD, and OpenBSD, which may allow local users to manipulate memory through a lengthy banner. Despite the technical nature of this issue, it is challenged by CVE and several third-party assessments, as the banner does not operate with setuid privileges, limiting exploit potential to normal operational boundaries.

References

http://www.securityfocus.com/archive/1/452374/100/200/thr...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/archive/1/452322/100/200/thr...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/archive/1/452330/100/200/thr...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2006
Vulnerability Reserved
Dec 7, 2006

CVE-2006-6397 Data

JSON

Netbsd

What is CVE-2006-6397?

References

Timeline