Lucene search

[email protected]CVE-2006-1628

HistoryApr 13, 2006 - 6:02 p.m.

CVE-2006-1628

2006-04-1318:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-1628

adobe livecycle

workflow

forum manager

authentication

privileged actions

7.4 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

68.4%

JSON

Adobe LiveCycle Workflow 7.01 and LiveCycle Forum Manager 7.01 allows users to authenticate and perform privileged actions when their account is marked “OBSOLETE” but the account is also active, within the authentication system.

CPENameOperatorVersion
adobe:livecycle_form_manageradobe livecycle form managereq7.01

CPE	Name	Operator	Version
adobe:livecycle_form_manager	adobe livecycle form manager	eq	7.01

References

secunia.com/advisories/19620

securitytracker.com/id?1015906

www.adobe.com/support/techdocs/333036.html

www.securityfocus.com/bid/17511

www.vupen.com/english/advisories/2006/1343

exchange.xforce.ibmcloud.com/vulnerabilities/25779

7.4 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

68.4%

JSON

Related for CVE-2006-1628

prion1