Lucene search

[email protected]CVE-2006-4290

HistoryAug 22, 2006 - 5:04 p.m.

CVE-2006-4290

2006-08-2217:04:00

[email protected]

web.nvd.nist.gov

cve-2006-4290

directory traversal vulnerability

sony vaio media server

information security

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

Directory traversal vulnerability in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attackers to gain sensitive information via unspecified vectors.

Affected configurations

NVD

Node

sonyvaio_media_serverMatch2.0

sonyvaio_media_serverMatch3.0

sonyvaio_media_serverMatch4.0

sonyvaio_media_serverMatch5.0

CPENameOperatorVersion
sony:vaio_media_serversony vaio media servereq2.0
sony:vaio_media_serversony vaio media servereq3.0
sony:vaio_media_serversony vaio media servereq4.0
sony:vaio_media_serversony vaio media servereq5.0

CPE	Name	Operator	Version
sony:vaio_media_server	sony vaio media server	eq	2.0
sony:vaio_media_server	sony vaio media server	eq	3.0
sony:vaio_media_server	sony vaio media server	eq	4.0
sony:vaio_media_server	sony vaio media server	eq	5.0

References

kb.sony-europe.com/kb/solutions/en/V00000_V00499/v00246.html

secunia.com/advisories/21512

www.pentest.co.uk/documents/ptl-2006-02.html

www.securityfocus.com/bid/19560

www.vupen.com/english/advisories/2006/3287

exchange.xforce.ibmcloud.com/vulnerabilities/28424

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.7%

JSON

Related for CVE-2006-4290

nvd1 cvelist1