CVE-2006-0868

Published Feb 23, 2006

Last updated 3 months ago

CVSS info 7.5

Overview

Description: Multiple unspecified injection vulnerabilities in unspecified Auth Container back ends for PEAR::Auth before 1.2.4, and 1.3.x before 1.3.0r4, allow remote attackers to "falsify authentication credentials," related to the "underlying storage containers."
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5241665D-61C1-4ECB-A449-43568150CB73"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D4E772E-76B5-48E3-81EF-B5F3B2B60669"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D66E0B84-DE95-4306-9CA7-006D168C188B"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C295FC3-469D-48FB-820D-7DAA75D3A9F6"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDF2A7C7-3FC8-4581-B4CB-D80BE1A6D6D6"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69A0E9AE-74F4-4CC8-B137-CECA8F11224F"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FF6E378-4388-43F7-AF85-47855A7F96F5"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2590C68-88A0-4921-BB36-129752145BC7"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97ABEE68-A1A3-4CE3-A117-84275B445675"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E535400-D140-4780-98CB-133142CD390E"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6D8566F-8165-4BE5-BA18-7D73FBED62B2"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.0rc7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C188D7B-377F-4B08-8351-306CD4FB2530"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06A8377B-CDD9-49C9-B263-FB7FE1228E65"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "370F9F15-10D2-4C67-898E-F95222305599"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.3.0rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D09F8C0-0A05-48CA-AF29-510E100B743A"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.3.0rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "206298B4-ECFE-40F1-9095-4E9BB5865217"
          },
          {
            "criteria": "cpe:2.3:a:pear:xml_rpc:1.3.0rc3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CAA1638-A8AC-4589-91F1-F990D3140CCA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References