Unrated severityNVD Advisory· Published Sep 9, 2006· Updated Apr 16, 2026
CVE-2006-4655
CVE-2006-4655
Description
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
Affected products
7cpe:2.3:o:sun:solaris:8.0:*:sparc:*:*:*:*:*+ 5 more
- cpe:2.3:o:sun:solaris:8.0:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- www.risesecurity.org/advisory/RISE-2006001.txtnvdVendor Advisory
- secunia.com/advisories/21815nvd
- secunia.com/advisories/21845nvd
- secunia.com/advisories/21856nvd
- secunia.com/advisories/21993nvd
- securityreason.com/securityalert/1545nvd
- securitytracker.com/idnvd
- sunsolve.sun.com/search/document.donvd
- support.avaya.com/elmodocs2/security/ASA-2006-195.htmnvd
- www.securityfocus.com/archive/1/445579/100/0/threadednvd
- www.securityfocus.com/bid/19905nvd
- www.vupen.com/english/advisories/2006/3525nvd
- www.vupen.com/english/advisories/2006/3529nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28820nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1798nvd
News mentions
0No linked articles in our index yet.