Lucene search

[email protected]CVE-2006-0964

HistoryMar 02, 2006 - 11:02 p.m.

CVE-2006-0964

2006-03-0223:02:00

[email protected]

web.nvd.nist.gov

cve-2006-0964

client firewall

ncp network communication secure client

security

vulnerability

firewall bypass

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Client Firewall in NCP Network Communication Secure Client 8.11 Build 146, and possibly other versions, allows local users to bypass firewall program execution rules by replacing an allowed program with an arbitrary program.

Affected configurations

NVD

Node

ncp_network_communicationssecure_clientMatch8.11_build_146

CPENameOperatorVersion
ncp_network_communications:secure_clientncp network communications secure clienteq8.11_build_146

CPE	Name	Operator	Version
ncp_network_communications:secure_client	ncp network communications secure client	eq	8.11_build_146

References

lists.grok.org.uk/pipermail/full-disclosure/2006-March/042640.html

secunia.com/advisories/19082

www.securityfocus.com/archive/1/426480/100/0/threaded

www.securityfocus.com/bid/16906

exchange.xforce.ibmcloud.com/vulnerabilities/25242

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2006-0964

cvelist1 nvd1 prion1