CVE-2006-2550 - Vulnerability Details - OpenCVE

perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Perlpodder	Perlpodder

Configuration 1 [-]

OR	cpe:2.3:a:perlpodder:perlpodder::::::::
	cpe:2.3:a:perlpodder:perlpodder:0.2:::::::*
	cpe:2.3:a:perlpodder:perlpodder:0.3:::::::*

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0570.html
http://secunia.com/advisories/20238
http://www.osvdb.org/25708
http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php
http://www.securityfocus.com/archive/1/434711/100/0/threaded
http://www.securityfocus.com/bid/18067
http://www.vupen.com/english/advisories/2006/1906
https://exchange.xforce.ibmcloud.com/vulnerabilities/26575

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-05-23T10:00:00

Updated: 2024-08-07T17:51:04.910Z

Reserved: 2006-05-22T00:00:00

Link: CVE-2006-2550

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2006-05-23T10:06:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2006-2550

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-05-22T00:00:00", "descriptions": [{"lang": "en", "value": "perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "perlpodder-dlset-command-execution(26575)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26575"}, {"name": "20060522 Perlpodder Remote Arbitrary Command Execution", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0570.html"}, {"name": "20060522 Perlpodder Remote Arbitrary Command Execution", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/434711/100/0/threaded"}, {"name": "ADV-2006-1906", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/1906"}, {"name": "20238", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20238"}, {"tags": ["x_refsource_MISC"], "url": "http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php"}, {"name": "18067", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18067"}, {"name": "25708", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/25708"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-2550", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "perlpodder-dlset-command-execution(26575)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26575"}, {"name": "20060522 Perlpodder Remote Arbitrary Command Execution", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0570.html"}, {"name": "20060522 Perlpodder Remote Arbitrary Command Execution", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/434711/100/0/threaded"}, {"name": "ADV-2006-1906", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/1906"}, {"name": "20238", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20238"}, {"name": "http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php", "refsource": "MISC", "url": "http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php"}, {"name": "18067", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18067"}, {"name": "25708", "refsource": "OSVDB", "url": "http://www.osvdb.org/25708"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T17:51:04.910Z"}, "title": "CVE Program Container", "references": [{"name": "perlpodder-dlset-command-execution(26575)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26575"}, {"name": "20060522 Perlpodder Remote Arbitrary Command Execution", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0570.html"}, {"name": "20060522 Perlpodder Remote Arbitrary Command Execution", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/434711/100/0/threaded"}, {"name": "ADV-2006-1906", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/1906"}, {"name": "20238", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20238"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php"}, {"name": "18067", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18067"}, {"name": "25708", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/25708"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-2550", "datePublished": "2006-05-23T10:00:00", "dateReserved": "2006-05-22T00:00:00", "dateUpdated": "2024-08-07T17:51:04.910Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:perlpodder:perlpodder:*:*:*:*:*:*:*:*", "matchCriteriaId": "2ABE3ADD-8789-43B5-B0CB-15E1EB1B4F0B", "versionEndIncluding": "0.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:perlpodder:perlpodder:0.2:*:*:*:*:*:*:*", "matchCriteriaId": "D418DFBE-6841-4503-9032-645778E213FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:perlpodder:perlpodder:0.3:*:*:*:*:*:*:*", "matchCriteriaId": "5C8EEADA-DFFE-46A9-951C-AA3C60BEB953", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548."}], "id": "CVE-2006-2550", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-05-23T10:06:00.000", "references": [{"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0570.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/20238"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/25708"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/434711/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/18067"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/1906"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26575"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0570.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/20238"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/25708"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Vendor Advisory"], "url": "http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/434711/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/18067"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/1906"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26575"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}