Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11446
HistoryJun 14, 2006 - 12:00 a.m.

KLA11446 SB vulnerability in WinSCP

2006-06-1400:00:00
Kaspersky Lab
threats.kaspersky.com
12

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:C/I:C/A:N

6.9 Medium

AI Score

Confidence

Low

0.088 Low

EPSS

Percentile

94.6%

JSON

Argument injection vulnerability was found in WinSCP. Malicious users can exploit this vulnerability to bypass security restrictions.

Original advisories

Older Versions

Related products

WinSCP

CVE list

CVE-2006-3015 high

Solution

Update to the latest version

Download WinSCP

Impacts

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Affected Products

  • WinSCP 3.8.1

Related

nessus 1
cve 2
cert 1
cvelist 2
nvd 2
prion 1
nessus
nessus
WinSCP URI Handler Arbitrary File Access
2006-06-21 00:00:00
cve
cve
CVE-2006-3015
2006-06-14 15:06:00
CVE-2007-4909
2007-09-17 17:17:00
cert
cert
WinSCP URI handlers fails to properly parse command line switches
2006-06-22 00:00:00
cvelist
cvelist
CVE-2006-3015
2006-06-14 15:00:00
CVE-2007-4909
2007-09-17 17:00:00
nvd
nvd
CVE-2006-3015
2006-06-14 15:06:00
CVE-2007-4909
2007-09-17 17:17:00
prion
prion
Design/Logic Flaw
2007-09-17 17:17:00

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:C/I:C/A:N

6.9 Medium

AI Score

Confidence

Low

0.088 Low

EPSS

Percentile

94.6%

JSON
Related for KLA11446
nessus1cve2cert1cvelist2nvd2prion1