CVE-2006-0868
7.5 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.7%
Multiple unspecified injection vulnerabilities in unspecified Auth Container back ends for PEAR::Auth before 1.2.4, and 1.3.x before 1.3.0r4, allow remote attackers to “falsify authentication credentials,” related to the “underlying storage containers.”
References
pear.php.net/package/Auth/download/1.2.4
pear.php.net/package/Auth/download/1.3.0r4
secunia.com/advisories/19008
secunia.com/advisories/19301
securitytracker.com/id?1015666
www.gentoo.org/security/en/glsa/glsa-200603-13.xml
www.securityfocus.com/archive/1/425796/100/0/threaded
www.securityfocus.com/bid/16758
www.vupen.com/english/advisories/2006/0696
exchange.xforce.ibmcloud.com/vulnerabilities/24854
Related
7.5 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.7%