CVE-2006-3147

Sažetak

Unspecified vulnerability in Hosting Controller before 6.1 (aka Hotfix 3.2) allows remote authenticated attackers to gain host admin privileges, list all resellers, or change resellers' passwords via unspecified vectors. NOTE: due to the lack of precise details, it is not clear whether this is related to a previously disclosed issue such as CVE-2005-1788.

Reference

http://hostingcontroller.com/english/logs/hotfixlogv61_3_2.html
http://secunia.com/advisories/20743
http://securitytracker.com/id?1016444
http://www.osvdb.org/26693
http://www.securityfocus.com/bid/18565
http://www.vupen.com/english/advisories/2006/2459
https://exchange.xforce.ibmcloud.com/vulnerabilities/27340

CVSS

Base:	6.5
Impact:	6.4
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

20-07-2017 - 01:32

Objavljeno

22-06-2006 - 22:06