Lucene search

[email protected]CVE-2006-4443

HistoryAug 29, 2006 - 11:04 p.m.

CVE-2006-4443

2006-08-2923:04:00

[email protected]

web.nvd.nist.gov

cve-2006-4443

php

remote file inclusion

alstrasoft video share enterprise

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.056 Low

EPSS

Percentile

93.3%

JSON

PHP remote file inclusion vulnerability in myajaxphp.php in AlstraSoft Video Share Enterprise allows remote attackers to execute arbitrary PHP code via a URL in the config[BASE_DIR] parameter.

Affected configurations

NVD

Node

alstrasoftvideo_share_enterpriseMatch4.0

CPENameOperatorVersion
alstrasoft:video_share_enterprisealstrasoft video share enterpriseeq4.0

CPE	Name	Operator	Version
alstrasoft:video_share_enterprise	alstrasoft video share enterprise	eq	4.0

References

securityreason.com/securityalert/1467

www.securityfocus.com/archive/1/444416/100/0/threaded

www.securityfocus.com/bid/19724

exchange.xforce.ibmcloud.com/vulnerabilities/28583

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.056 Low

EPSS

Percentile

93.3%

JSON

Related for CVE-2006-4443

cvelist1 nvd1