Lucene search
MitreCVE-2006-0845HistoryFeb 22, 2006 - 2:02 a.m.
CVE-2006-0845
2006-02-2202:02:00
mitre
web.nvd.nist.gov
20
cve-2006-0845
leif m. wright's blog 3.5
remote authenticated users
arbitrary programs
sendmail vulnerability
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.004
Percentile
71.9%
Leif M. Wright’s Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pathname.
Affected configurations
Node
leif_m._wrightweb_blogMatch3.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| leif_m._wright | web_blog | 3.5 | cpe:2.3:a:leif_m._wright:web_blog:3.5:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2006-02-22 02:02:00
cvelist
cvelist
CVE-2006-0845
2006-02-22 02:00:00
nvd
nvd
CVE-2006-0845
2006-02-22 02:02:00
packetstorm
packetstorm
EV0082.txt
2006-03-03 00:00:00
securityvulns
securityvulns
[eVuln] Leif M. Wright's Blog Multiple Vulnerabilities
2006-03-01 00:00:00
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.004
Percentile
71.9%
Related for CVE-2006-0845