Lucene search

MitreCVE-2006-2513

HistoryMay 22, 2006 - 9:06 p.m.

CVE-2006-2513

2006-05-2221:06:00

mitre

web.nvd.nist.gov

cve-2006-2513

unspecified vulnerability

sun java system directory server 5.2

installation process

privilege escalation

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.02

Percentile

88.8%

JSON

Unspecified vulnerability in the installation process in Sun Java System Directory Server 5.2 causes wrong user data to be written to a file created by the installation, which allows remote attackers or local users to gain privileges.

Affected configurations

Nvd

Node

sunjava_system_directory_serverMatch5.2

sunjava_system_directory_serverMatch5.22003q4

sunjava_system_directory_serverMatch5.22004q2

sunjava_system_directory_serverMatch5.22005q1

sunjava_system_directory_serverMatch5.22005q4

VendorProductVersionCPE
sunjava_system_directory_server5.2cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*
sunjava_system_directory_server5.2cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*
sunjava_system_directory_server5.2cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*
sunjava_system_directory_server5.2cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*
sunjava_system_directory_server5.2cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	java_system_directory_server	5.2	cpe:2.3:a:sun:java_system_directory_server:5.2:::::::*
sun	java_system_directory_server	5.2	cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4::::::
sun	java_system_directory_server	5.2	cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2::::::
sun	java_system_directory_server	5.2	cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1::::::
sun	java_system_directory_server	5.2	cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4::::::

References

secunia.com/advisories/20144

securitytracker.com/id?1016112

sunsolve.sun.com/search/document.do?assetkey=1-26-102345-1

www.securityfocus.com/bid/18018

www.vupen.com/english/advisories/2006/1832

exchange.xforce.ibmcloud.com/vulnerabilities/26477

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.02

Percentile

88.8%

JSON

Related for CVE-2006-2513