CVE-2006-1654

Exploit

EPSS 17.09%
Published 06.04.2006 10:04:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Directory traversal vulnerability in the HP Color LaserJet 2500 Toolbox and Color LaserJet 4600 Toolbox on Microsoft Windows before 20060402 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 5225.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Hp ≫ Color Laserjet 2500 Toolbox

Hp ≫ Color Laserjet 4600 Toolbox

Hp ≫ Color Laserjet Version4600dn

Hp ≫ Color Laserjet Version4600dtn

Hp ≫ Color Laserjet Version4600hdn

Hp ≫ Color Laserjet 2500

Hp ≫ Color Laserjet 2500l

Hp ≫ Color Laserjet 2500lse

Hp ≫ Color Laserjet 2500n

Hp ≫ Color Laserjet 2500tn

Hp ≫ Color Laserjet 4600

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	17.09%	0.947

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0085.html

Patch

Exploit

http://secunia.com/advisories/19529

http://securitytracker.com/id?1015862

Patch

Exploit

http://www.osvdb.org/24396

http://www.securityfocus.com/archive/1/429893/100/0/threaded

http://www.securityfocus.com/archive/1/429984/100/0/threaded

http://www.securityfocus.com/bid/17367

Exploit

http://www.vupen.com/english/advisories/2006/1230

https://exchange.xforce.ibmcloud.com/vulnerabilities/25627

https://nvd.nist.gov/vuln/detail/CVE-2006-1654

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-1654

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-1654

EUVD