CVE-2006-2196
pinball - design error
EPSS 0.08%
Description
Unspecified vulnerability in pinball 0.3.1 allows local users to gain privileges via unknown attack vectors that cause pinball to load plugins from an attacker-controlled directory while operating at raised privileges.
How to fix CVE-2006-2196
To remediate CVE-2006-2196, upgrade the affected package to a fixed version below.
- Debian/pinball—upgrade to 0.3.1-6 or later
- Debian/pinball—upgrade to 0.3.1-3sarge1 or later
Is CVE-2006-2196 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 0.3.1-6
- from 0, < 0.3.1-3sarge1