6.2

CVE-2006-6131

Exploit
Untrusted search path vulnerability in (1) WSAdminServer and (2) WSWebServer in Kerio WebSTAR (4D WebSTAR Server Suite) 5.4.2 and earlier allows local users with webstar privileges to gain root privileges via a malicious libucache.dylib helper library in the current working directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
KerioWebstar Version <= 5.4.2
KerioWebstar Version4.0
KerioWebstar Version5.1.2
KerioWebstar Version5.1.3
KerioWebstar Version5.2
KerioWebstar Version5.2.1
KerioWebstar Version5.2.2
KerioWebstar Version5.2.3
KerioWebstar Version5.2.4
KerioWebstar Version5.3
KerioWebstar Version5.3.1
KerioWebstar Version5.3.2
KerioWebstar Version5.3.3
KerioWebstar Version5.3.4
KerioWebstar Version5.4
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.365
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.2 1.9 10
AV:L/AC:H/Au:N/C:C/I:C/A:C
http://secunia.com/advisories/22906
Vendor Advisory
Exploit