CVE-2006-3147

Published Jun 22, 2006

Last updated 7 years ago

Overview

Description: Unspecified vulnerability in Hosting Controller before 6.1 (aka Hotfix 3.2) allows remote authenticated attackers to gain host admin privileges, list all resellers, or change resellers' passwords via unspecified vectors. NOTE: due to the lack of precise details, it is not clear whether this is related to a previously disclosed issue such as CVE-2005-1788.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BD6BB80-8513-4294-8A81-FE8B11FA8BF0"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8DDFC8A-C341-4137-AF44-F93E814E218B"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8BDE7F42-4372-440E-9E8A-D4B123EB9045"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_1.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03E517F5-FA8C-4099-9D2C-6818A3082881"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABC9B48D-8D14-40D1-A444-2EC2661E40A2"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52010E43-81DA-4E60-8CE9-7E60DC017DA0"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BAAEE0D-CDCE-46F2-8FCD-E9C9CD7BB159"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_2.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F0B0DB0-92F4-4F62-8962-0723633540BB"
          },
          {
            "criteria": "cpe:2.3:a:hosting_controller:hosting_controller:6.1_hotfix_2.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFA29887-EEE3-470E-8837-B45DEF171B10"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References