CVE-2006-1654

Exploit

EPSS 17.09%
Veröffentlicht 06.04.2006 10:04:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Directory traversal vulnerability in the HP Color LaserJet 2500 Toolbox and Color LaserJet 4600 Toolbox on Microsoft Windows before 20060402 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 5225.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hp ≫ Color Laserjet 2500 Toolbox

Hp ≫ Color Laserjet 4600 Toolbox

Hp ≫ Color Laserjet Version4600dn

Hp ≫ Color Laserjet Version4600dtn

Hp ≫ Color Laserjet Version4600hdn

Hp ≫ Color Laserjet 2500

Hp ≫ Color Laserjet 2500l

Hp ≫ Color Laserjet 2500lse

Hp ≫ Color Laserjet 2500n

Hp ≫ Color Laserjet 2500tn

Hp ≫ Color Laserjet 4600

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	17.09%	0.947

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0085.html

Patch

Exploit

http://secunia.com/advisories/19529

http://securitytracker.com/id?1015862

Patch

Exploit

http://www.osvdb.org/24396

http://www.securityfocus.com/archive/1/429893/100/0/threaded

http://www.securityfocus.com/archive/1/429984/100/0/threaded

http://www.securityfocus.com/bid/17367

Exploit

http://www.vupen.com/english/advisories/2006/1230

https://exchange.xforce.ibmcloud.com/vulnerabilities/25627

https://nvd.nist.gov/vuln/detail/CVE-2006-1654

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-1654

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-1654

EUVD