Lucene search

[email protected]CVE-2006-6981

HistoryFeb 08, 2007 - 6:28 p.m.

CVE-2006-6981

2007-02-0818:28:00

[email protected]

web.nvd.nist.gov

3proxy

denial of service

ntlm authentication

cve-2006-6981

6.8 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

66.2%

JSON

3proxy 0.5 to 0.5.2, when NT-encoded passwords are being used, allows remote attackers to cause a denial of service (blocked account) via unspecified vectors related to NTLM authentication, which causes a password hash to be overwritten.

Affected configurations

NVD

Node

3proxy3proxyMatch0.5

3proxy3proxyMatch0.5.1

3proxy3proxyMatch0.5.2

CPENameOperatorVersion
3proxy:3proxy3proxyeq0.5
3proxy:3proxy3proxyeq0.5.1
3proxy:3proxy3proxyeq0.5.2

CPE	Name	Operator	Version
3proxy:3proxy	3proxy	eq	0.5
3proxy:3proxy	3proxy	eq	0.5.1
3proxy:3proxy	3proxy	eq	0.5.2

References

3proxy.ru/0.5.3g/Changelog.txt

exchange.xforce.ibmcloud.com/vulnerabilities/38201

6.8 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

66.2%

JSON

Related for CVE-2006-6981

cvelist1 nvd1 securityvulns1