CVE-2006-3147
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
91.6%
Unspecified vulnerability in Hosting Controller before 6.1 (aka Hotfix 3.2) allows remote authenticated attackers to gain host admin privileges, list all resellers, or change resellers’ passwords via unspecified vectors. NOTE: due to the lack of precise details, it is not clear whether this is related to a previously disclosed issue such as CVE-2005-1788.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hosting_controller | hosting_controller | 6.1+hotfix+2.8 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+2.8::: |
| hosting_controller | hosting_controller | 6.1+hotfix+1.7 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+1.7::: |
| hosting_controller | hosting_controller | 6.1+hotfix+1.9 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+1.9::: |
| hosting_controller | hosting_controller | 6.1+hotfix+2.1 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+2.1::: |
| hosting_controller | hosting_controller | 6.1+hotfix+2.9 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+2.9::: |
| hosting_controller | hosting_controller | 6.1+hotfix+1.4 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+1.4::: |
| hosting_controller | hosting_controller | 6.1+hotfix+2.3 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+2.3::: |
| hosting_controller | hosting_controller | 6.1+hotfix+2.0 | cpe:/a:hosting_controller:hosting_controller:6.1+hotfix+2.0::: |
| hosting_controller | hosting_controller | 6.1 | cpe:/a:hosting_controller:hosting_controller:6.1::: |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
91.6%