Lucene search

[email protected]CVE-2006-1829

HistoryApr 19, 2006 - 4:06 p.m.

CVE-2006-1829

2006-04-1916:06:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-1829

sybase

easerver

remote authentication

password credentials

security vulnerability

7.1 High

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

67.3%

JSON

EAServer Manager in Sybase EAServer 5.2 and 5.3 allows remote authenticated users, possibly guests, to obtain password credentials of arbitrary users via unspecified vectors involving (1) connection caches, (2) open password prompts, and (3) stored custom connection profiles.

CPENameOperatorVersion
sybase:easerversybase easervereq5.2
sybase:easerversybase easervereq5.3

CPE	Name	Operator	Version
sybase:easerver	sybase easerver	eq	5.2
sybase:easerver	sybase easerver	eq	5.3

References

secunia.com/advisories/19605

securitytracker.com/id?1015913

www.securityfocus.com/bid/17508

www.sybase.com/detail?id=1040117

www.vupen.com/english/advisories/2006/1344

exchange.xforce.ibmcloud.com/vulnerabilities/25777

7.1 High

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

67.3%

JSON

Related for CVE-2006-1829

prion1