Vulnerability CVE-2006-3569


Published: 2006-07-12   Modified: 2012-02-12

Description:
Unspecified vulnerability in NetApp Data ONTAP 7.0x through 7.0.4P8D9, 7.1x, 7.1.0.1x, and 7.2RC1, RC2, and RC3, as used in IBM N series Filers and other products, allows unauthorized users to gain access to privileged commands via unknown vectors, probably related to incorrect capabilities with the audit role.

Type:

CWE-noinfo

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.6/10
6.4/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
IBM -> Network appliance data ontap 

 References:
http://xforce.iss.net/xforce/xfdb/27651
http://www.vupen.com/english/advisories/2006/2761
http://www.securityfocus.com/bid/18951
http://www.osvdb.org/27134
http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910
http://secunia.com/advisories/20984
http://now.netapp.com/NOW/products/vulnerability_0601/

Copyright 2024, cxsecurity.com

 

Back to Top