Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2006-5852
HistoryNov 10, 2006 - 2:07 a.m.

CVE-2006-5852

2006-11-1002:07:00
mitre
web.nvd.nist.gov
27
cve-2006-5852
openbase sql
vulnerability
untrusted search path
local users
privileges

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

Low

EPSS

0.001

Percentile

25.6%

JSON

Untrusted search path vulnerability in openexec in OpenBase SQL before 10.0.1 allows local users to gain privileges via a modified PATH that references a malicious helper binary, as demonstrated by (1) cp, (2) rm, and (3) killall, different vectors than CVE-2006-5327.

Affected configurations

Nvd
Node
openbase_international_ltdopenbaseMatch7.0.15mac_os_x
OR
openbase_international_ltdopenbaseMatch8.0.4mac_os_x
OR
openbase_international_ltdopenbaseMatch9.1.5mac_os_x
OR
openbase_international_ltdopenbaseMatch10.0mac_os_x
VendorProductVersionCPE
openbase_international_ltdopenbase7.0.15cpe:2.3:a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*
openbase_international_ltdopenbase8.0.4cpe:2.3:a:openbase_international_ltd:openbase:8.0.4:*:mac_os_x:*:*:*:*:*
openbase_international_ltdopenbase9.1.5cpe:2.3:a:openbase_international_ltd:openbase:9.1.5:*:mac_os_x:*:*:*:*:*
openbase_international_ltdopenbase10.0cpe:2.3:a:openbase_international_ltd:openbase:10.0:*:mac_os_x:*:*:*:*:*

Related

cvelist 2
nvd 2
exploitdb 1
cve 1
cvelist
cvelist
CVE-2006-5852
2006-11-10 02:00:00
CVE-2006-5327
2006-10-17 21:00:00
nvd
nvd
CVE-2006-5852
2006-11-10 02:07:00
CVE-2006-5327
2006-10-17 21:07:00
exploitdb
exploitdb
Xcode OpenBase 10.0.0 (OSX) - Unsafe System Call Privilege Escalation
2006-11-08 00:00:00
cve
cve
CVE-2006-5327
2006-10-17 21:07:00

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

Low

EPSS

0.001

Percentile

25.6%

JSON
Related for CVE-2006-5852
cvelist2nvd2exploitdb1cve1