CVE-2006-4049

Unspecified vulnerability in the utxconfig utility in Sun Ray Server Software 3.x allows local users to create or overwrite arbitrary files via unknown attack vectors.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://secunia.com/advisories/21398
http://securitytracker.com/id?1016647
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101924-1
http://www.securityfocus.com/bid/19394
http://www.vupen.com/english/advisories/2006/3226
https://exchange.xforce.ibmcloud.com/vulnerabilities/28260
http://secunia.com/advisories/21398
http://securitytracker.com/id?1016647
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101924-1
http://www.securityfocus.com/bid/19394
http://www.vupen.com/english/advisories/2006/3226
https://exchange.xforce.ibmcloud.com/vulnerabilities/28260

Configurations

Configuration 1 (hide)

cpe:2.3:a:sun:ray_server_software:3.0:*:*:*:*:*:*:*

History

21 Nov 2024, 00:15

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/21398 -~~	() http://secunia.com/advisories/21398 -
References	~~() http://securitytracker.com/id?1016647 -~~	() http://securitytracker.com/id?1016647 -
References	~~() http://sunsolve.sun.com/search/document.do?assetkey=1-26-101924-1 -~~	() http://sunsolve.sun.com/search/document.do?assetkey=1-26-101924-1 -
References	~~() http://www.securityfocus.com/bid/19394 -~~	() http://www.securityfocus.com/bid/19394 -
References	~~() http://www.vupen.com/english/advisories/2006/3226 -~~	() http://www.vupen.com/english/advisories/2006/3226 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/28260 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/28260 -

Information

Published : 2006-08-09 23:04

Updated : 2025-04-03 01:03

NVD link : CVE-2006-4049

Mitre link : CVE-2006-4049

CVE.ORG link : CVE-2006-4049

JSON object : View

Products Affected

sun

ray_server_software

CWE

NVD-CWE-Other

{"id": "CVE-2006-4049", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-08-09T23:04:00.000", "references": [{"url": "http://secunia.com/advisories/21398", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016647", "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101924-1", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/19394", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/3226", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28260", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/21398", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1016647", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101924-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/19394", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/3226", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28260", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the utxconfig utility in Sun Ray Server Software 3.x allows local users to create or overwrite arbitrary files via unknown attack vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en la utilidad utxconfig de Sun Ray Server Software 3.x permite a usuarios locales crear o sobrescribir ficheros locales de su elecci\u00f3n mediante vectores de ataque desconocidos."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sun:ray_server_software:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C953069B-2CAD-4EDB-807C-A6DCBC031FD4"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

2.1 /10