Vulnerability CVE-2006-4959


Published: 2006-09-23   Modified: 2012-02-12

Description:
Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.3 allows remote attackers to obtain sensitive information, including hostnames, versions, and settings details, via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities
Marc Ruef (maru ...
25.09.2006

Type:

CWE-Other

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
SUN -> Secure global desktop 

 References:
http://securityreason.com/securityalert/1623
http://securitytracker.com/id?1016900
http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555
http://www.securityfocus.com/archive/1/446566/100/0/threaded
http://www.securityfocus.com/bid/20135
http://www.vupen.com/english/advisories/2006/3739
https://exchange.xforce.ibmcloud.com/vulnerabilities/29076

Copyright 2024, cxsecurity.com

 

Back to Top