5

CVE-2006-1654

Exploit
Directory traversal vulnerability in the HP Color LaserJet 2500 Toolbox and Color LaserJet 4600 Toolbox on Microsoft Windows before 20060402 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 5225.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.68% 0.906
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0085.html
Patch
Exploit
http://secunia.com/advisories/19529
http://securitytracker.com/id?1015862
Patch
Exploit
http://www.osvdb.org/24396
http://www.securityfocus.com/archive/1/429893/100/0/threaded
http://www.securityfocus.com/archive/1/429984/100/0/threaded
http://www.securityfocus.com/bid/17367
Exploit
http://www.vupen.com/english/advisories/2006/1230
https://exchange.xforce.ibmcloud.com/vulnerabilities/25627