Lucene search

[email protected]CVE-2006-6329

HistoryDec 06, 2006 - 9:28 p.m.

CVE-2006-6329

2006-12-0621:28:00

[email protected]

web.nvd.nist.gov

cve-2006-6329

index.php

torrentflux 2.2

remote attackers

file deletion

4.9 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.9%

JSON

index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter.

Affected configurations

NVD

Node

torrentfluxtorrentfluxMatch2.2

CPENameOperatorVersion
torrentflux:torrentfluxtorrentfluxeq2.2

CPE	Name	Operator	Version
torrentflux:torrentflux	torrentflux	eq	2.2

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=%23400582

secunia.com/advisories/22880

www.exploit-db.com/exploits/2786

4.9 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.9%

JSON

Related for CVE-2006-6329

nvd1 ubuntucve1 cvelist1