CVE-2006-6024 - OpenCVE

Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) "Eudora WorldMail stack overflow" and (2) "Eudora WorldMail heap overflow" modules in VulnDisco Pack. NOTE: Some of these details are obtained from third party information. As of 20061118, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Qualcomm	Eudora Worldmail

Configuration 1 [-]

cpe:2.3:a:qualcomm:eudora_worldmail:3.0_version_6.1.22.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://secunia.com/advisories/22832
http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml
http://www.securityfocus.com/bid/21095

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-11-21T23:00:00

Updated: 2024-08-07T20:12:31.330Z

Reserved: 2006-11-21T00:00:00

Link: CVE-2006-6024

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2006-11-21T23:07:00.000

Modified: 2008-09-05T21:13:41.600

Link: CVE-2006-6024

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-11-15T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) \"Eudora WorldMail stack overflow\" and (2) \"Eudora WorldMail heap overflow\" modules in VulnDisco Pack. NOTE: Some of these details are obtained from third party information. As of 20061118, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-02-09T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "21095", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/21095"}, {"tags": ["x_refsource_MISC"], "url": "http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml"}, {"name": "22832", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22832"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-6024", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) \"Eudora WorldMail stack overflow\" and (2) \"Eudora WorldMail heap overflow\" modules in VulnDisco Pack. NOTE: Some of these details are obtained from third party information. As of 20061118, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "21095", "refsource": "BID", "url": "http://www.securityfocus.com/bid/21095"}, {"name": "http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml", "refsource": "MISC", "url": "http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml"}, {"name": "22832", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22832"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T20:12:31.330Z"}, "title": "CVE Program Container", "references": [{"name": "21095", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/21095"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml"}, {"name": "22832", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/22832"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-6024", "datePublished": "2006-11-21T23:00:00", "dateReserved": "2006-11-21T00:00:00", "dateUpdated": "2024-08-07T20:12:31.330Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:qualcomm:eudora_worldmail:3.0_version_6.1.22.0:*:*:*:*:*:*:*", "matchCriteriaId": "98449049-AD0C-4AA6-A0B8-257A344F2EBA", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in Eudora Worldmail, possibly Worldmail 3 version 6.1.22.0, have unknown impact and attack vectors, as demonstrated by the (1) \"Eudora WorldMail stack overflow\" and (2) \"Eudora WorldMail heap overflow\" modules in VulnDisco Pack. NOTE: Some of these details are obtained from third party information. As of 20061118, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en Eudora Worldmail, posiblemente Worldmail 3 versi\u00f3n 6.1.22.0, tiene impacto y vectores de ataque desconocidos, como ha sido demostrado por los m\u00f3dulos (1) \"Eudora WorldMail stack overflow\" and (2) \"Eudora WorldMail heap overflow\" en VulnDisco Pack. NOTA: algunos de estos detalles se han obtenido de informaci\u00f3n de terceros. Desde el 18/11/2006, esta revelaci\u00f3n no tiene informaci\u00f3n accionable. Sin embargo, debido a que el autor de VulnDisco Pack es un investigador de confianza, CVE ha asignado un identificador a este asunto con prop\u00f3sitos de seguimiento."}], "id": "CVE-2006-6024", "lastModified": "2008-09-05T21:13:41.600", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2006-11-21T23:07:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22832"}, {"source": "cve@mitre.org", "url": "http://web.archive.org/web/20060502082657/http://www.gleg.net/vulndisco_pack_standard.shtml"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/21095"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}