Vulnerability CVE-2006-5851

Vulnerability Name:

CVE-2006-5851 (CCN-30245)

Assigned:

2006-11-07

Published:

2006-11-07

Updated:

2017-10-19

Summary:

openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink attack on the /tmp/output file, a different vulnerability than CVE-2006-5328.

CVSS v3 Severity:

4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
1.8 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

2.6 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P)
2.3 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-59

Vulnerability Consequences:

File Manipulation

References:

Source: MITRE
Type: CNA
CVE-2006-5851

Source: FULLDISC
Type: Mailing List
20081108 OpenBase SQL multiple vulnerabilities Part Deux

Source: CCN
Type: SA22742
OpenBase SQL "openexec" Privilege Escalation Vulnerability

Source: SECUNIA
Type: Vendor Advisory
22742

Source: MISC
Type: Exploit
http://www.digitalmunition.com/DMA%5B2006-1107a%5D.txt

Source: CCN
Type: DMA[2006-1107a]
OpenBase SQL multiple vulnerabilities Part Deux

Source: VUPEN
Type: Not Applicable
ADV-2006-4404

Source: XF
Type: UNKNOWN
openbasesql-openexec-symlink(30245)

Source: EXPLOIT-DB
Type: UNKNOWN
2737

Vulnerable Configuration:

Configuration 1:

cpe:/a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*

OR cpe:/a:openbase_international_ltd:openbase:8.0.4:*:mac_os_x:*:*:*:*:*

OR cpe:/a:openbase_international_ltd:openbase:9.1.5:*:mac_os_x:*:*:*:*:*

OR cpe:/a:openbase_international_ltd:openbase:10.0:*:mac_os_x:*:*:*:*:*

Denotes that component is vulnerable

BACK