Lucene search

[email protected]NVD:CVE-2006-4290

HistoryAug 22, 2006 - 5:04 p.m.

CVE-2006-4290

2006-08-2217:04:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.028

Percentile

90.7%

JSON

Directory traversal vulnerability in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attackers to gain sensitive information via unspecified vectors.

Affected configurations

Nvd

Node

sonyvaio_media_serverMatch2.0

sonyvaio_media_serverMatch3.0

sonyvaio_media_serverMatch4.0

sonyvaio_media_serverMatch5.0

VendorProductVersionCPE
sonyvaio_media_server2.0cpe:2.3:h:sony:vaio_media_server:2.0:*:*:*:*:*:*:*
sonyvaio_media_server3.0cpe:2.3:h:sony:vaio_media_server:3.0:*:*:*:*:*:*:*
sonyvaio_media_server4.0cpe:2.3:h:sony:vaio_media_server:4.0:*:*:*:*:*:*:*
sonyvaio_media_server5.0cpe:2.3:h:sony:vaio_media_server:5.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sony	vaio_media_server	2.0	cpe:2.3:h:sony:vaio_media_server:2.0:::::::*
sony	vaio_media_server	3.0	cpe:2.3:h:sony:vaio_media_server:3.0:::::::*
sony	vaio_media_server	4.0	cpe:2.3:h:sony:vaio_media_server:4.0:::::::*
sony	vaio_media_server	5.0	cpe:2.3:h:sony:vaio_media_server:5.0:::::::*

References

kb.sony-europe.com/kb/solutions/en/V00000_V00499/v00246.html

secunia.com/advisories/21512

www.pentest.co.uk/documents/ptl-2006-02.html

www.securityfocus.com/bid/19560

www.vupen.com/english/advisories/2006/3287

exchange.xforce.ibmcloud.com/vulnerabilities/28424

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.028

Percentile

90.7%

JSON

Related for NVD:CVE-2006-4290

cvelist1 cve1