Unrated severityNVD Advisory· Published Jan 25, 2006· Updated Apr 16, 2026

CVE-2006-0224

Description

Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument (alternative configuration file name).

Affected products

Libast/Libast4 versions
cpe:2.3:a:libast:libast:0.4:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:libast:libast:0.4:*:*:*:*:*:*:*
- cpe:2.3:a:libast:libast:0.5:*:*:*:*:*:*:*
- cpe:2.3:a:libast:libast:0.6:*:*:*:*:*:*:*
- cpe:2.3:a:libast:libast:0.6.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.rosiello.org/en/read_bugs.phpnvdPatchVendor Advisory
www.securityfocus.com/bid/16350nvdExploit
freshmeat.net/projects/libast/nvd
secunia.com/advisories/18586nvd
secunia.com/advisories/18632nvd
secunia.com/advisories/18916nvd
securityreason.com/securityalert/373nvd
www.debian.org/security/2006/dsa-976nvd
www.gentoo.org/security/en/glsa/glsa-200601-14.xmlnvd
www.mandriva.com/security/advisoriesnvd
www.osvdb.org/22735nvd
www.securityfocus.com/archive/1/423088/100/0/threadednvd
www.securityfocus.com/archive/1/423207/100/0/threadednvd
www.securityfocus.com/archive/1/423366/100/0/threadednvd
www.vupen.com/english/advisories/2006/0314nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24303nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000