Lucene search

MitreCVE-2006-3825

HistoryJul 25, 2006 - 1:22 p.m.

CVE-2006-3825

2006-07-2513:22:00

mitre

web.nvd.nist.gov

sun solaris

cve-2006-3825

ipv4

vulnerability

firewall bypass

unauthorized network communication

nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.4

Confidence

High

EPSS

Percentile

13.2%

JSON

The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication.

Affected configurations

Nvd

Node

sunsolarisMatch10.0sparc

VendorProductVersionCPE
sunsolaris10.0cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	10.0	cpe:2.3:o:sun:solaris:10.0::sparc:::::

References

secunia.com/advisories/21163

sunsolve.sun.com/search/document.do?assetkey=1-26-102509-1

www.securityfocus.com/bid/19108

www.vupen.com/english/advisories/2006/2937

exchange.xforce.ibmcloud.com/vulnerabilities/27935

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.4

Confidence

High

EPSS

Percentile

13.2%

JSON

Related for CVE-2006-3825