Unrated severityNVD Advisory· Published Dec 8, 2006· Updated Jun 16, 2026

CVE-2006-6397

Description

Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner is not setuid, an exploit would not cross privilege boundaries in normal operations. This issue is not a vulnerability

Affected products

FreeBSD/FreeBSD2 versions
cpe:2.3:o:freebsd:freebsd:6.2:stable:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:freebsd:freebsd:6.2:stable:*:*:*:*:*:*
- (no CPE)
NetBSD/NetBSD2 versions
cpe:2.3:o:netbsd:netbsd:2.0.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:netbsd:netbsd:2.0.4:*:*:*:*:*:*:*
- (no CPE)
OpenBSD/OpenBSD2 versions
cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*
- (no CPE)

Patches

Vulnerability mechanics

References

www.securityfocus.com/archive/1/452322/100/200/threadednvd
www.securityfocus.com/archive/1/452330/100/200/threadednvd
www.securityfocus.com/archive/1/452374/100/200/threadednvd
www.securityfocus.com/archive/1/452470/100/200/threadednvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000