Lucene search

K
cve[email protected]CVE-2006-4803
HistorySep 14, 2006 - 10:07 p.m.

CVE-2006-4803

2006-09-1422:07:00
web.nvd.nist.gov
18
novell
identity manager
idm
code execution
cve-2006-4803
nvd

7.6 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

The Fan-Out Linux and UNIX receiver scripts in Novell Identity Manager (IDM) 3.0.1 allows local users to execute arbitrary commands via unspecified vectors involving certain environment variables and “code injection.”

Affected configurations

NVD
Node
netiqidentity_managerMatch3.0.1

7.6 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

Related for CVE-2006-4803