PT-2006-1011 · Smstools · Sms Server Tools

Ulf Harnhammar

Published

2006-01-09

Updated

2017-07-20

CVE-2006-0083

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: SMS Server Tools (smstools) versions 1.14.8 and earlier

Description: The issue is related to a format string vulnerability in the logging code, which could allow local users to execute arbitrary code. Additionally, there are multiple vulnerabilities in the smstools package that can lead to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited by a local attacker.

Recommendations: For versions 1.14.8 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

BDU:2015-02587

CVE-2006-0083

DSA-930-1

DSA-930-2

Affected Products

Sms Server Tools

PT-2006-1011 · Smstools · Sms Server Tools

CVE-2006-0083

Related Identifiers

Affected Products

References · 13