Lucene search

[email protected]CVE-2006-0926

HistoryFeb 28, 2006 - 11:02 a.m.

CVE-2006-0926

2006-02-2811:02:00

[email protected]

web.nvd.nist.gov

cve-2006-0926

allume

zipmagic

directory traversal

vulnerability

remote attack

crafted pathnames

Affected configurations

NVD

Node

smithmicrostuffit_deluxeMatch9.0

smithmicrostuffit_expanderMatch9.0.0.21_engine_9.0.0.21

smithmicrostuffit_standardMatch9.0

smithmicrozipmagic_deluxeMatch9.0

CPENameOperatorVersion
smithmicro:stuffit_deluxesmithmicro stuffit deluxeeq9.0
smithmicro:stuffit_expandersmithmicro stuffit expandereq9.0.0.21_engine_9.0.0.21
smithmicro:stuffit_standardsmithmicro stuffit standardeq9.0
smithmicro:zipmagic_deluxesmithmicro zipmagic deluxeeq9.0

CPE	Name	Operator	Version
smithmicro:stuffit_deluxe	smithmicro stuffit deluxe	eq	9.0
smithmicro:stuffit_expander	smithmicro stuffit expander	eq	9.0.0.21_engine_9.0.0.21
smithmicro:stuffit_standard	smithmicro stuffit standard	eq	9.0
smithmicro:zipmagic_deluxe	smithmicro zipmagic deluxe	eq	9.0

References

secunia.com/advisories/19010

www.hamid.ir/security/stuffit.txt

www.osvdb.org/23463

www.securityfocus.com/archive/1/425972/100/0/threaded

www.securityfocus.com/bid/16806

www.vupen.com/english/advisories/2006/0732

exchange.xforce.ibmcloud.com/vulnerabilities/24886

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

7 High

AI Score

Confidence

Low

0.039 Low

EPSS

Percentile

92.0%

JSON

Related for CVE-2006-0926

nvd1 cvelist1 prion1