CVE-2006-3425

🗓️ 07 Jul 2006 00:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov👁 51 Views🌐 WEB

FastPatch for PatchLink Update Server and Novell ZENworks allows unauthorized access to PDP proxy servers via dagent/proxyreg.asp

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2006-3425	7 Jul 200600:00	–	cvelist
EUVD	EUVD-2006-3421	7 Oct 202500:30	–	euvd
NVD	CVE-2006-3425	7 Jul 200600:05	–	nvd
Tenable Nessus	PatchLink Update Server proxyreg.asp Arbitrary Proxy Manipulation	28 Jul 200600:00	–	nessus

NVD

Node

novell zenworksRange≤6.2sr1

Source	Link
securityfocus	www.securityfocus.com/bid/18723
lists	www.lists.grok.org.uk/pipermail/full-disclosure/2006-June/047495.html
securityreason	www.securityreason.com/securityalert/1200
vupen	www.vupen.com/english/advisories/2006/2596
securitytracker	www.securitytracker.com/id
secunia	www.secunia.com/advisories/20876
vupen	www.vupen.com/english/advisories/2006/2595
securityfocus	www.securityfocus.com/archive/1/438710/100/0/threaded
secunia	www.secunia.com/advisories/20878

Parameter	Position	Path	Description	CWE
List	path	dagent/proxyreg.asp	Unauthenticated remote attacker can list, add, or delete PatchLink Distribution Point proxy servers via dagent/proxyreg.asp.	CWE-306
Proxy	path	dagent/proxyreg.asp	Unauthenticated remote attacker can list, add, or delete PatchLink Distribution Point proxy servers via dagent/proxyreg.asp.	CWE-306
Delete	path	dagent/proxyreg.asp	Unauthenticated remote attacker can list, add, or delete PatchLink Distribution Point proxy servers via dagent/proxyreg.asp.	CWE-306

16 Apr 2026 00:27Current

7High risk

Vulners AI Score7

CVSS 27.5

EPSS0.01977