What is the severity of CVE-2006-0646?

CVE-2006-0646 is considered a high severity vulnerability due to its potential to allow local attackers to execute arbitrary code.

How do I fix CVE-2006-0646?

To fix CVE-2006-0646, update your SUSE Linux system to the latest version that addresses this vulnerability.

Which versions of SUSE Linux are affected by CVE-2006-0646?

CVE-2006-0646 affects SUSE Linux versions 9.0 through 10.0, including various Enterprise and Personal editions.

What impact can CVE-2006-0646 have on my system?

The impact of CVE-2006-0646 can lead to local attackers executing arbitrary code, potentially compromising user accounts and sensitive data.

Can CVE-2006-0646 be exploited remotely?

CVE-2006-0646 cannot be exploited remotely as it requires local access to the system to execute an ld-linked application.

Vulnerability/
CVE-2006-0646

medium

4.4

CWE

NVD-CWE-Other

11/2/2006

7/8/2024

CVE-2006-0646

First published: Sat Feb 11 2006(Updated: )

ld in SUSE Linux 9.1 through 10.0, and SLES 9, in certain circumstances when linking binaries, can leave an empty RPATH or RUNPATH, which allows local attackers to execute arbitrary code as other users via by running an ld-linked application from the current directory, which could contain an attacker-controlled library file.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
SUSE Linux	=9.0
SUSE Linux	=9.1
SUSE Linux	=9.3
SUSE Linux	=9.3
SUSE Linux	=9.2
SUSE Linux	=10.0
SUSE Linux	=9.1
SUSE Linux	=9.3
SUSE Linux	=9.2
SUSE Linux	=9.2
SUSE Linux	=9.1

Remedy

http://lists.suse.com/archive/suse-security-announce/2006-Feb/0003.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-0646?
CVE-2006-0646 is considered a high severity vulnerability due to its potential to allow local attackers to execute arbitrary code.
How do I fix CVE-2006-0646?
To fix CVE-2006-0646, update your SUSE Linux system to the latest version that addresses this vulnerability.
Which versions of SUSE Linux are affected by CVE-2006-0646?
CVE-2006-0646 affects SUSE Linux versions 9.0 through 10.0, including various Enterprise and Personal editions.
What impact can CVE-2006-0646 have on my system?
The impact of CVE-2006-0646 can lead to local attackers executing arbitrary code, potentially compromising user accounts and sensitive data.
Can CVE-2006-0646 be exploited remotely?
CVE-2006-0646 cannot be exploited remotely as it requires local access to the system to execute an ld-linked application.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/remedy
agent/references
agent/last-modified-date
agent/severity
agent/weakness
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/suse
canonical/suse linux
version/suse linux/9.0
version/suse linux/9.1
version/suse linux/9.3
version/suse linux/9.2
version/suse linux/10.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.