Lucene search

[email protected]CVE-2006-5639

HistoryNov 01, 2006 - 12:07 a.m.

CVE-2006-5639

2006-11-0100:07:00

[email protected]

web.nvd.nist.gov

cve-2006-5639

openwbem

web based enterprise management

nvd

vulnerability

random number generator

privilege escalation

authentication

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.1%

JSON

Unspecified vulnerability in the random number generator in OpenWBEM (Web Based Enterprise Management) 3.2.0 allows attackers to gain privileges via vectors related to “local or HTTP Digest authentication.”

Affected configurations

NVD

Node

openwbemopenwbemRange≤3.2.1

openwbemopenwbemMatch3.2

CPENameOperatorVersion
openwbem:openwbemopenwbemle3.2.1
openwbem:openwbemopenwbemeq3.2

CPE	Name	Operator	Version
openwbem:openwbem	openwbem	le	3.2.1
openwbem:openwbem	openwbem	eq	3.2

References

secunia.com/advisories/22709

sourceforge.net/forum/forum.php?forum_id=625294

www.securityfocus.com/bid/20807

www.vupen.com/english/advisories/2006/4238

exchange.xforce.ibmcloud.com/vulnerabilities/29914

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.1%

JSON

Related for CVE-2006-5639

cvelist1 nvd1