CVE-2006-4573

Severity

26%

Complexity

49%

Confidentiality

48%

Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.

Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.

CVSS 2.0 Base Score 2.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:N/I:N/A:P).

Overview

First reported 18 years ago

2006-10-24 18:07:00

Last updated 13 years ago

2011-03-08 02:41:00

Affected Software

GNU screen

References

http://docs.info.apple.com/article.html?artnum=305530

APPLE-SA-2007-05-24

[screen-users] 20061023 Secfix release for screen: screen-4.0.3

Patch

22573

22583

22611

22647

22649

22707

22726

25402

GLSA-200611-01

SSA:2006-307-02

DSA-1202

MDKSA-2006:191

OpenPKG-SA-2006.026

20727

USN-370-1

ADV-2006-4189

ADV-2007-1939

https://issues.rpath.com/browse/RPL-734

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.