Lucene search

MitreCVE-2006-4462

HistoryAug 31, 2006 - 8:04 p.m.

CVE-2006-4462

2006-08-3120:04:00

mitre

web.nvd.nist.gov

cve-2006-4462

gonafish.com

linkscaffe

admin access

vulnerability

remote attackers

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.008

Percentile

82.0%

JSON

Gonafish.com LinksCaffe 2.0 and 3.0 do not properly restrict access to administrator functions, which allows remote attackers to gain full administration rights via a direct request to Admin/admin1953.php.

Affected configurations

Nvd

Node

gonafish.comlinkscaffeMatch2.0

gonafish.comlinkscaffeMatch3.0

VendorProductVersionCPE
gonafish.comlinkscaffe2.0cpe:2.3:a:gonafish.com:linkscaffe:2.0:*:*:*:*:*:*:*
gonafish.comlinkscaffe3.0cpe:2.3:a:gonafish.com:linkscaffe:3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gonafish.com	linkscaffe	2.0	cpe:2.3:a:gonafish.com:linkscaffe:2.0:::::::*
gonafish.com	linkscaffe	3.0	cpe:2.3:a:gonafish.com:linkscaffe:3.0:::::::*

References

securityreason.com/securityalert/1484

securitytracker.com/id?1016767

www.securityfocus.com/archive/1/444636/100/0/threaded

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.008

Percentile

82.0%

JSON

Related for CVE-2006-4462