Lucene search

[email protected]CVE-2006-0993

HistoryMay 10, 2006 - 2:22 a.m.

CVE-2006-0993

2006-05-1002:22:00

[email protected]

web.nvd.nist.gov

cve-2006-0993

3com tippingpoint

sms server

unauthorized access

information disclosure

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.021 Low

EPSS

Percentile

89.2%

JSON

The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings.

Affected configurations

NVD

Node

3comtippingpoint_sms_serverRange≤2.2.1.4477

CPENameOperatorVersion
3com:tippingpoint_sms_server3com tippingpoint sms serverle2.2.1.4477

CPE	Name	Operator	Version
3com:tippingpoint_sms_server	3com tippingpoint sms server	le	2.2.1.4477

References

secunia.com/advisories/20058

securityreason.com/securityalert/870

securitytracker.com/id?1016051

www.3com.com/securityalert/alerts/3COM-06-002.html

www.osvdb.org/25360

www.securityfocus.com/archive/1/433432/100/0/threaded

www.securityfocus.com/bid/17935

www.vupen.com/english/advisories/2006/1752

www.zerodayinitiative.com/advisories/ZDI-06-013.html

exchange.xforce.ibmcloud.com/vulnerabilities/26338

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.021 Low

EPSS

Percentile

89.2%

JSON

Related for CVE-2006-0993

nvd1 zdi1 securityvulns1 prion1 cvelist1