Home > Vulnerability Database > CVE-2006-3018

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2006-3018

Date: June 14, 2006

Unspecified vulnerability in the session extension functionality in PHP before 5.1.3 has unknown impact and attack vectors related to heap corruption.

Severity Score

7.3

Related Resources (12)

Url: http://www.ubuntu.com/usn/usn-320-1

Url: http://secunia.com/advisories/21125

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-3018

Url: http://secunia.com/advisories/19927

Url: http://www.osvdb.org/25254

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-3018

Url: http://secunia.com/advisories/21050

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:122

Url: http://www.securityfocus.com/bid/17843

Url: http://www.php.net/release_5_1_3.php

Url: http://securitytracker.com/id?1016306

Url: https://www.mend.io/vulnerability-database/CVE-2006-3018

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us