Lucene search

Ubuntu.comUB:CVE-2006-4247

HistorySep 29, 2006 - 12:00 a.m.

CVE-2006-4247

2006-09-2900:00:00

ubuntu.com

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

52.8%

JSON

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone
2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of
other users, related to “an erroneous security declaration.”

OSVersionArchitecturePackageVersionFilename
ubuntu6.10noarchzope-cmfplone< 2.5.1-1UNKNOWN
ubuntu7.04noarchzope-cmfplone< 2.5.1-1UNKNOWN
ubuntu7.10noarchzope-cmfplone< 2.5.1-1UNKNOWN
ubuntu8.04noarchzope-cmfplone< 2.5.1-1UNKNOWN
ubuntu8.10noarchzope-cmfplone< 2.5.1-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.10	noarch	zope-cmfplone	< 2.5.1-1	UNKNOWN
ubuntu	7.04	noarch	zope-cmfplone	< 2.5.1-1	UNKNOWN
ubuntu	7.10	noarch	zope-cmfplone	< 2.5.1-1	UNKNOWN
ubuntu	8.04	noarch	zope-cmfplone	< 2.5.1-1	UNKNOWN
ubuntu	8.10	noarch	zope-cmfplone	< 2.5.1-1	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2006-4247

nvd.nist.gov/vuln/detail/CVE-2006-4247

security-tracker.debian.org/tracker/CVE-2006-4247

www.cve.org/CVERecord?id=CVE-2006-4247

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

52.8%

JSON

Related for UB:CVE-2006-4247