CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-2324

180solutions Zango downloads "required Adware components" without checking integrity or authenticity, which might allow context-dependent attackers to execute arbitrary code by subverting the DNS resolution of static.zangocash.com.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.4%

CVSS Severity

CVSS v2 Score 10.0

References

http://secdev.zoller.lu/research/zango.htm
http://securityreason.com/securityalert/890
http://www.securityfocus.com/archive/1/433566/100/0/threaded
http://secdev.zoller.lu/research/zango.htm
http://securityreason.com/securityalert/890
http://www.securityfocus.com/archive/1/433566/100/0/threaded

Products affected by CVE-2006-2324

180solutions » Zango » Version: Any

cpe:2.3:a:180solutions:zango:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-2324

Products

Pricing

Contact Us