ID CVE-2006-1125Type cveReporter cve@mitre.orgModified 2017-07-20T01:30:00
Description
Grisoft AVG Free 7.1, and other versions including 7.0.308, sets Everyone/Full Control permissions for certain update files including (1) upd_vers.cfg, (2) incavi.avm, and (3) unspecified drivers, which might allow local users to gain privileges.
{"id": "CVE-2006-1125", "bulletinFamily": "NVD", "title": "CVE-2006-1125", "description": "Grisoft AVG Free 7.1, and other versions including 7.0.308, sets Everyone/Full Control permissions for certain update files including (1) upd_vers.cfg, (2) incavi.avm, and (3) unspecified drivers, which might allow local users to gain privileges.", "published": "2006-03-09T21:02:00", "modified": "2017-07-20T01:30:00", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-1125", "reporter": "cve@mitre.org", "references": ["http://archives.neohapsis.com/archives/bugtraq/2006-02/0631.html", "http://www.dslreports.com/forum/remark,15601404", "http://www.vupen.com/english/advisories/2006/0845", "http://www.securityfocus.com/bid/16952", "http://securitytracker.com/id?1015728", "https://exchange.xforce.ibmcloud.com/vulnerabilities/25139", "http://secunia.com/advisories/19118"], "cvelist": ["CVE-2006-1125"], "type": "cve", "lastseen": "2019-05-29T18:08:31", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "94adc45d76d57c25775321173bc7b2dc"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "3ab1d040d145ce94fc3ca940fb10b59d"}, {"key": "cpe23", "hash": "6c94232c6ddac8090145ab98e04989c0"}, {"key": "cvelist", "hash": "c7bca5142c8551dd2f98a650e9bfc5fd"}, {"key": "cvss", "hash": "6f6410364e4cee78bd47ed1fc3d8dd5b"}, {"key": "cvss2", "hash": "a20e5567f34056412c98626d7c0696f5"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "fc1e0b68480581905a7c9f7862e2e21e"}, {"key": "href", "hash": "afee469466d6c9c44be430445b91507a"}, {"key": "modified", "hash": "6b0619a3e655794e0911204a98b14355"}, {"key": "published", "hash": "b473813b932651a60af4857937649e17"}, {"key": "references", "hash": "80c11d00a80c77fb0dd936ad0e076878"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "fbaae4b7491ba7834672293180714e1e"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "43377523fbb242ef03913ec3cc90c73f79735ff28f7d714d0bda935ae19d4c0a", "viewCount": 0, "enchantments": {"dependencies": {"references": [], "modified": "2019-05-29T18:08:31"}, "score": {"value": 4.4, "vector": "NONE", "modified": "2019-05-29T18:08:31"}, "vulnersScore": 4.4}, "objectVersion": "1.3", "cpe": ["cpe:/a:grisoft:avg_antivirus:7.1.308", "cpe:/a:grisoft:avg_antivirus:7.0.251", "cpe:/a:grisoft:avg_antivirus:7.0.323", "cpe:/a:grisoft:avg_antivirus:7.0"], "affectedSoftware": [{"name": "grisoft avg_antivirus", "operator": "eq", "version": "7.0.251"}, {"name": "grisoft avg_antivirus", "operator": "eq", "version": "7.0"}, {"name": "grisoft avg_antivirus", "operator": "eq", "version": "7.1.308"}, {"name": "grisoft avg_antivirus", "operator": "eq", "version": "7.0.323"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:grisoft:avg_antivirus:7.0:*:*:*:*:*:*:*", "cpe:2.3:a:grisoft:avg_antivirus:7.1.308:*:*:*:*:*:*:*", "cpe:2.3:a:grisoft:avg_antivirus:7.0.251:*:*:*:*:*:*:*", "cpe:2.3:a:grisoft:avg_antivirus:7.0.323:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"]}
{}
