CVE-2006-5842

Опубликовано: 10 нояб. 2006

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The keystore file in Unicore Client before 5.6 build 5, when running on Unix systems, has insecure default permissions, which allows local users to obtain sensitive information.

Ссылки

http://secunia.com/advisories/22765
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=461942
Patch
http://www.securityfocus.com/bid/20981
http://www.vupen.com/english/advisories/2006/4419
https://exchange.xforce.ibmcloud.com/vulnerabilities/30157
http://secunia.com/advisories/22765
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=461942
Patch
http://www.securityfocus.com/bid/20981
http://www.vupen.com/english/advisories/2006/4419
https://exchange.xforce.ibmcloud.com/vulnerabilities/30157

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:unicore:unicore_client:*:*:*:*:*:*:*:*

Версия до 5.6 (включая)

EPSS

Процентиль: 18%

0.00059

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j2w3-9x2h-3h37

github

почти 4 года назад