Lucene search

MitreCVE-2006-2317

HistoryMay 12, 2006 - 12:02 a.m.

CVE-2006-2317

2006-05-1200:02:00

mitre

web.nvd.nist.gov

vulnerability

ideal science

ideal bb

remote attackers

arbitrary files

web root

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.012

Percentile

85.3%

JSON

Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to read arbitrary files under the web root via unspecified attack vectors related to the OpenTextFile method in Scripting.FileSystemObject.

Affected configurations

Nvd

Node

ideal_scienceidealbbMatch1.5.0_beta1

ideal_scienceidealbbMatch1.5.0_beta2

ideal_scienceidealbbMatch1.5.0_beta3

ideal_scienceidealbbMatch1.5.0_beta4

ideal_scienceidealbbMatch1.5.0_rc1

ideal_scienceidealbbMatch1.5.1

ideal_scienceidealbbMatch1.5.2

ideal_scienceidealbbMatch1.5.2a

ideal_scienceidealbbMatch1.5.2b

ideal_scienceidealbbMatch1.5.2c

ideal_scienceidealbbMatch1.5.3

ideal_scienceidealbbMatch1.5.3_beta1

ideal_scienceidealbbMatch1.5.3_beta2

ideal_scienceidealbbMatch1.5.3a

ideal_scienceidealbbMatch1.5.3b

ideal_scienceidealbbMatch1.5.4a

VendorProductVersionCPE
ideal_scienceidealbb1.5.0_beta1cpe:2.3:a:ideal_science:idealbb:1.5.0_beta1:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.0_beta2cpe:2.3:a:ideal_science:idealbb:1.5.0_beta2:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.0_beta3cpe:2.3:a:ideal_science:idealbb:1.5.0_beta3:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.0_beta4cpe:2.3:a:ideal_science:idealbb:1.5.0_beta4:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.0_rc1cpe:2.3:a:ideal_science:idealbb:1.5.0_rc1:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.1cpe:2.3:a:ideal_science:idealbb:1.5.1:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.2cpe:2.3:a:ideal_science:idealbb:1.5.2:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.2acpe:2.3:a:ideal_science:idealbb:1.5.2a:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.2bcpe:2.3:a:ideal_science:idealbb:1.5.2b:*:*:*:*:*:*:*
ideal_scienceidealbb1.5.2ccpe:2.3:a:ideal_science:idealbb:1.5.2c:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ideal_science	idealbb	1.5.0_beta1	cpe:2.3:a:ideal_science:idealbb:1.5.0_beta1:::::::*
ideal_science	idealbb	1.5.0_beta2	cpe:2.3:a:ideal_science:idealbb:1.5.0_beta2:::::::*
ideal_science	idealbb	1.5.0_beta3	cpe:2.3:a:ideal_science:idealbb:1.5.0_beta3:::::::*
ideal_science	idealbb	1.5.0_beta4	cpe:2.3:a:ideal_science:idealbb:1.5.0_beta4:::::::*
ideal_science	idealbb	1.5.0_rc1	cpe:2.3:a:ideal_science:idealbb:1.5.0_rc1:::::::*
ideal_science	idealbb	1.5.1	cpe:2.3:a:ideal_science:idealbb:1.5.1:::::::*
ideal_science	idealbb	1.5.2	cpe:2.3:a:ideal_science:idealbb:1.5.2:::::::*
ideal_science	idealbb	1.5.2a	cpe:2.3:a:ideal_science:idealbb:1.5.2a:::::::*
ideal_science	idealbb	1.5.2b	cpe:2.3:a:ideal_science:idealbb:1.5.2b:::::::*
ideal_science	idealbb	1.5.2c	cpe:2.3:a:ideal_science:idealbb:1.5.2c:::::::*

Rows per page:

1-10 of 161

References

archives.neohapsis.com/archives/fulldisclosure/2006-05/0203.html

secunia.com/advisories/20035

securityreason.com/securityalert/871

www.idealscience.com/ibb/posts.aspx?postID=24415

www.osvdb.org/25455

www.securityfocus.com/archive/1/433248/100/0/threaded

www.securityfocus.com/bid/17920

www.vupen.com/english/advisories/2006/1729

exchange.xforce.ibmcloud.com/vulnerabilities/26348

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.012

Percentile

85.3%

JSON

Related for CVE-2006-2317