Lucene search

[email protected]CVE-2006-5862

HistoryNov 11, 2006 - 1:07 a.m.

CVE-2006-5862

2006-11-1101:07:00

[email protected]

web.nvd.nist.gov

cve-2006-5862

directory traversal

web interface

nav

security vulnerability

attack vectors

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.6%

JSON

Directory traversal vulnerability in the session mechanism of the web interface for Network Administration Visualized (NAV) before 3.1.1 allows attackers with filesystem write access to have an unknown impact via unknown attack vectors.

Affected configurations

NVD

Node

network_administration_visualizednetwork_administration_visualizedMatch3.1.0

CPENameOperatorVersion
network_administration_visualized:network_administration_visualizednetwork administration visualizedeq3.1.0

CPE	Name	Operator	Version
network_administration_visualized:network_administration_visualized	network administration visualized	eq	3.1.0

References

secunia.com/advisories/22766

sourceforge.net/project/shownotes.php?release_id=461986

www.securityfocus.com/bid/20995

www.vupen.com/english/advisories/2006/4447

exchange.xforce.ibmcloud.com/vulnerabilities/30174

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.6%

JSON

Related for CVE-2006-5862

cvelist1 nvd1