Lucene search
HistoryMay 18, 2006 - 10:02 a.m.
CVE-2006-2442
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6
Confidence
Low
EPSS
0
Percentile
5.1%
kphone 4.2 creates .qt/kphonerc with world-readable permissions, which allows local users to read usernames and SIP passwords.
Affected configurations
Node
kphonekphoneMatch4.2
Related
debian
debian
[SECURITY] [DSA 1062-1] New kphone packages fix information disclosure
2006-05-19 18:45:21
ubuntucve
ubuntucve
CVE-2006-2442
2006-05-18 00:00:00
nessus
nessus
Debian DSA-1062-1 : kphone - insecure file creation
2006-10-14 00:00:00
Mandrake Linux Security Advisory : kphone (MDKSA-2006:089)
2006-05-27 00:00:00
cvelist
cvelist
CVE-2006-2442
2006-05-18 10:00:00
prion
prion
Design/Logic Flaw
2006-05-18 10:02:00
openvas
openvas
Debian Security Advisory DSA 1062-1 (kphone)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1062-1)
2008-01-17 00:00:00
osv
osv
kphone - insecure file creation
2006-05-19 00:00:00
securityvulns
securityvulns
cve
cve
CVE-2006-2442
2006-05-18 10:02:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2006-2442