CVE-2006-1829

Sažetak

EAServer Manager in Sybase EAServer 5.2 and 5.3 allows remote authenticated users, possibly guests, to obtain password credentials of arbitrary users via unspecified vectors involving (1) connection caches, (2) open password prompts, and (3) stored custom connection profiles.

Reference

http://secunia.com/advisories/19605
http://securitytracker.com/id?1015913
http://www.securityfocus.com/bid/17508
http://www.sybase.com/detail?id=1040117
http://www.vupen.com/english/advisories/2006/1344
https://exchange.xforce.ibmcloud.com/vulnerabilities/25777

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

20-07-2017 - 01:30

Objavljeno

19-04-2006 - 16:06