CVE-2006-4659

EPSS 0.52%
Published 09.09.2006 00:04:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses predictable URLs for the spam classification of each message, which allows remote attackers to cause Panda to classify arbitrary messages as spam via a web page that contains IMG tags with the predictable URLs.  NOTE: this issue could also be regarded as a cross-site request forgery (CSRF) vulnerability.

Affected products Warnungen 0 Metrics 2 CWE 0 References 8

Data is provided by the National Vulnerability Database (NVD)

Panda ≫ Panda Platinum Internet Security Version2006_10.02.01

Panda ≫ Panda Platinum Internet Security Version2007_11.00.00

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.52%	0.659

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

http://secunia.com/advisories/21769

http://securityreason.com/securityalert/1524

http://www.security.nnov.ru/advisories/pandais.asp

Vendor Advisory

http://www.securityfocus.com/archive/1/445479/100/0/threaded

http://www.securityfocus.com/bid/19891

https://nvd.nist.gov/vuln/detail/CVE-2006-4659

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-4659

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-4659

EUVD