Lucene search
HistoryDec 14, 2006 - 12:28 a.m.
CVE-2006-6510
1.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed “safe for scripting”, which allows local users to bypass security protections and read arbitrary files via certain functions.
Affected configurations
Node
sitekiosksitekioskMatch4.9.11
ORsitekiosksitekioskMatch4.9.14
ORsitekiosksitekioskMatch4.96
ORsitekiosksitekioskMatch4.96.0
ORsitekiosksitekioskMatch4.96.3
ORsitekiosksitekioskMatch4.97.0
ORsitekiosksitekioskMatch5.0.19
ORsitekiosksitekioskMatch5.0.26
ORsitekiosksitekioskMatch5.0.32
ORsitekiosksitekioskMatch5.0.35
ORsitekiosksitekioskMatch5.0.36
ORsitekiosksitekioskMatch5.0.38
ORsitekiosksitekioskMatch5.0.41
ORsitekiosksitekioskMatch5.0.238
ORsitekiosksitekioskMatch5.0.248
ORsitekiosksitekioskMatch5.0.264
ORsitekiosksitekioskMatch5.5.34
ORsitekiosksitekioskMatch5.5.35
ORsitekiosksitekioskMatch5.5.36
ORsitekiosksitekioskMatch5.5.39
ORsitekiosksitekioskMatch5.5.45
ORsitekiosksitekioskMatch6.0.14
ORsitekiosksitekioskMatch6.0.98_final
ORsitekiosksitekioskMatch6.2.51
ORsitekiosksitekioskMatch6.5.149
Related
cve
cve
CVE-2006-6510
2006-12-14 00:28:00
cvelist
cvelist
CVE-2006-6510
2006-12-14 00:00:00
nessus
nessus
SiteKiosk < 6.5.150 Multiple Vulnerabilities
2007-01-03 00:00:00
1.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2006-6510