Lucene search

MitreCVE-2006-5213

HistoryOct 10, 2006 - 4:06 a.m.

CVE-2006-5213

2006-10-1004:06:00

mitre

web.nvd.nist.gov

cve-2006-5213

sun solaris 10

permission checks

local users

intercept packets

spoof packets

nvd

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

Percentile

13.2%

JSON

Sun Solaris 10 before 20061006 uses “incorrect and insufficient permission checks” that allow local users to intercept or spoof packets by creating a raw socket on a link aggregation (network device aggregation).

Affected configurations

Nvd

Node

sunsolarisMatch10.0sparc

VendorProductVersionCPE
sunsolaris10.0cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	10.0	cpe:2.3:o:sun:solaris:10.0::sparc:::::

References

secunia.com/advisories/22246

secunia.com/advisories/22992

securitytracker.com/id?1017013

sunsolve.sun.com/search/document.do?assetkey=1-26-102606-1

support.avaya.com/elmodocs2/security/ASA-2006-250.htm

www.securityfocus.com/bid/20377

www.vupen.com/english/advisories/2006/3961

exchange.xforce.ibmcloud.com/vulnerabilities/29381

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

Percentile

13.2%

JSON

Related for CVE-2006-5213