CVE-2006-4491

Published Aug 31, 2006

Last updated 3 months ago

CVSS info 4.0

Overview

Description: Directory traversal vulnerability in Cybozu Collaborex, AG before 1.2(1.5), AG Pocket before 5.2(0.8), Mailwise before 3.0(0.3), and Garoon 1 before 1.5(4.1) allows remote authenticated users to read arbitrary files via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cybozu:collaborex:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CED5BAA4-1DD1-4DC3-A777-1402E55ED4CB"
          },
          {
            "criteria": "cpe:2.3:a:cybozu:cybozu_ag:1.2\\(1.4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AE1109F-8CB8-4844-AAEA-00C28DA8A495"
          },
          {
            "criteria": "cpe:2.3:a:cybozu:cybozu_pocket:5.2\\(0.7\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1A8DF13-14FD-4BF2-BF6A-B931C319DA12"
          },
          {
            "criteria": "cpe:2.3:a:cybozu:garoon_1:1.5\\(4.0\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD557756-9B60-4983-AE38-74EF6C2B3C86"
          },
          {
            "criteria": "cpe:2.3:a:cybozu:mailwise:3.0\\(0.2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAB86035-A71A-4198-BADF-CA6723F2209E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References