CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-0071

The ebuild for pinentry before 0.7.2-r2 on Gentoo Linux sets setgid bits for pinentry programs, which allows local users to read or overwrite arbitrary files as gid 0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.9%

CVSS Severity

CVSS v2 Score 6.6

References

http://secunia.com/advisories/18284
http://www.gentoo.org/security/en/glsa/glsa-200601-01.xml
http://www.osvdb.org/22211
http://www.securityfocus.com/bid/16120
http://secunia.com/advisories/18284
http://www.gentoo.org/security/en/glsa/glsa-200601-01.xml
http://www.osvdb.org/22211
http://www.securityfocus.com/bid/16120

Products affected by CVE-2006-0071

Gentoo » App-Crypt Pinentry » Version: 0.7.2

cpe:2.3:a:gentoo:app-crypt_pinentry:0.7.2
Gentoo » Linux » Version: N/A

cpe:2.3:o:gentoo:linux:-
Gentoo » Linux » Version: 1.2

cpe:2.3:o:gentoo:linux:1.2
Gentoo » Linux » Version: 1.4

cpe:2.3:o:gentoo:linux:1.4
Gentoo » Linux » Version: 2.1.30

cpe:2.3:o:gentoo:linux:2.1.30
Gentoo » Linux » Version: 2.2.28

cpe:2.3:o:gentoo:linux:2.2.28
Gentoo » Linux » Version: 2.3.30

cpe:2.3:o:gentoo:linux:2.3.30

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0071

Products

Pricing

Contact Us