Lucene search

K
cve[email protected]CVE-2006-3147
HistoryJun 22, 2006 - 10:06 p.m.

CVE-2006-3147

2006-06-2222:06:00
web.nvd.nist.gov
21
cve-2006-3147
hosting controller
vulnerability
remote attackers
admin privileges
resellers
passwords

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.6%

Unspecified vulnerability in Hosting Controller before 6.1 (aka Hotfix 3.2) allows remote authenticated attackers to gain host admin privileges, list all resellers, or change resellers’ passwords via unspecified vectors. NOTE: due to the lack of precise details, it is not clear whether this is related to a previously disclosed issue such as CVE-2005-1788.

Affected configurations

NVD
Node
hosting_controllerhosting_controllerMatch6.1
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_1.4
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_1.7
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_1.9
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_2.0
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_2.1
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_2.3
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_2.8
OR
hosting_controllerhosting_controllerMatch6.1_hotfix_2.9

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.6%

Related for CVE-2006-3147