CVE-2006-6684

Pedro Lineu Orso chetcpasswd <2.4 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd before 2.4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long X-Forwarded-For HTTP header. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

References (3)

Core 3
Core References
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/30546
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/22967

Scores

EPSS 0.0287
EPSS Percentile 85.2%

Details

CWE
CWE-119
Status published
Products (2)
pedro_lineu_orso/chetcpasswd 2.3.1
pedro_lineu_orso/chetcpasswd < 2.3.3
Published Dec 21, 2006
Tracked Since Feb 18, 2026