Lucene search

[email protected]CVE-2006-5001

HistorySep 26, 2006 - 8:07 p.m.

CVE-2006-5001

2006-09-2620:07:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

vulnerability

log analyzer

ws_ftp server

sensitive information

cve-2006-5001

nvd

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.494 Medium

EPSS

Percentile

97.5%

JSON

Unspecified vulnerability in the log analyzer in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, prevents certain sensitive information from being displayed in the (1) Files and (2) Summary tabs. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue.

CPENameOperatorVersion
ipswitch:ws_ftp_serveripswitch ws ftp servereq5.02
ipswitch:ws_ftp_serveripswitch ws ftp servereq5.03
progress:ws_ftp_serverprogress ws ftp servereq5.0.2
progress:ws_ftp_serverprogress ws ftp serverle5.05

CPE	Name	Operator	Version
ipswitch:ws_ftp_server	ipswitch ws ftp server	eq	5.02
ipswitch:ws_ftp_server	ipswitch ws ftp server	eq	5.03
progress:ws_ftp_server	progress ws ftp server	eq	5.0.2
progress:ws_ftp_server	progress ws ftp server	le	5.05

References

www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.494 Medium

EPSS

Percentile

97.5%

JSON