CVE-2006-0855

Publication date 23 February 2006

Last updated 17 July 2025

Ubuntu priority

Description

Stack-based buffer overflow in the fullpath function in misc.c for zoo 2.10 and earlier, as used in products such as Barracuda Spam Firewall, allows user-assisted attackers to execute arbitrary code via a crafted ZOO file that causes the combine function to return a longer string than expected.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
zoo	7.04 feisty	Fixed 2.10-17
	6.10 edgy	Fixed 2.10-17
	6.06 LTS dapper	Fixed 2.10-17

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2006-0855