CVE-2006-4070

Medium

5.1/10

Summary

Format string vulnerability in Imendio Planner 0.13 allows user-assisted attackers to execute arbitrary code via format string specifiers in a filename.

Access Complexity: HIGH
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Aug 10, 2006

CVE-2006-4070

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS