Lucene search

K

PRIOn knowledge basePRION:CVE-2006-1227

HistoryMar 14, 2006 - 7:06 p.m.

Improper access control

2006-03-1419:06:00

PRIOn knowledge base

www.prio-n.com

2

6.8 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

75.2%

Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8, when menu.module is used to create a menu item, does not implement access control for the page that is referenced, which might allow remote attackers to access administrator pages.

CPENameOperatorVersion
drupaleq4.6.0
drupaleq4.6.5
drupaleq4.5.4
drupaleq4.5.0
drupaleq4.5.2
drupaleq4.6.2
drupaleq4.5.7
drupaleq4.5.1
drupaleq4.6.3
drupaleq4.6.4

Rows per page:

1-10 of 141

References

secunia.com/advisories/19245

secunia.com/advisories/19257

securityreason.com/securityalert/578

www.debian.org/security/2006/dsa-1007

www.osvdb.org/23909

www.securityfocus.com/archive/1/427587/100/0/threaded

www.securityfocus.com/bid/17104

drupal.org/node/53796

exchange.xforce.ibmcloud.com/vulnerabilities/25197

6.8 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

75.2%

Related for PRION:CVE-2006-1227

cve1 ubuntucve1 debian2 nessus1 openvas2 osv1