CVE-2006-2709

Published: May 31, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 do not validate the source address of a message, which allows remote attackers to (1) execute arbitrary code on a client or (2) forge messages to the server.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.kb.cert.org/vuls/id/WDON-6Q6RYL

x_refsource_CONFIRM

20378

third-party-advisory

x_refsource_SECUNIA

c5evm-server-source-message-spoofing(26747)

vdb-entry

x_refsource_XF

http://www.kb.cert.org/vuls/id/WDON-6QANK7

x_refsource_CONFIRM

ADV-2006-2069

vdb-entry

x_refsource_VUPEN

1016184

vdb-entry

x_refsource_SECTRACK

VU#919345

third-party-advisory

x_refsource_CERT-VN

VU#288121

third-party-advisory

x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-2709

Description

Affected Products

References