CVE-2006-5014

Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in (1) mysqladmin and (2) hooksadmin.

CVSS v2.0 9.0 HIGH

9.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability : 8.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://changelog.cpanel.net/?build=&showall=1
http://forums.cpanel.net/showthread.php?t=58134
http://www.securityfocus.com/bid/20163
http://securitytracker.com/id?1016913
http://secunia.com/advisories/22072	Patch Vendor Advisory

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:cpanel:cpanel:10.8.2_118:::::::*
	cpe:2.3:a:cpanel:cpanel:5.0:::::::*
	cpe:2.3:a:cpanel:cpanel:5.3:::::::*
	cpe:2.3:a:cpanel:cpanel:6.0:::::::*
	cpe:2.3:a:cpanel:cpanel:10.2.0_r82:::::::*
	cpe:2.3:a:cpanel:cpanel:10.8.1_113:::::::*
	cpe:2.3:a:cpanel:cpanel:6.2:::::::*
	cpe:2.3:a:cpanel:cpanel:6.4.1:::::::*
	cpe:2.3:a:cpanel:cpanel:9.1.0_r85:::::::*
	cpe:2.3:a:cpanel:cpanel:9.9.1_r3:::::::*
	cpe:2.3:a:cpanel:cpanel:6.4.2_stable_48:::::::*
	cpe:2.3:a:cpanel:cpanel:9.0:::::::*
	cpe:2.3:a:cpanel:cpanel:6.4:::::::*
	cpe:2.3:a:cpanel:cpanel:6.4.2:::::::*
	cpe:2.3:a:cpanel:cpanel:8.0:::::::*
	cpe:2.3:a:cpanel:cpanel:9.1:::::::*
	cpe:2.3:a:cpanel:cpanel:9.4.1_r64:::::::*
	cpe:2.3:a:cpanel:cpanel:7.0:::::::*
	cpe:2.3:a:cpanel:cpanel:10.6.0_r137:::::::*

Information

Published : 2006-09-26 18:07

Updated : 2008-09-05 14:11

NVD link : CVE-2006-5014

Mitre link : CVE-2006-5014

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

cpanel

cpanel

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://changelog.cpanel.net/?build=&showall=1", "name": "http://changelog.cpanel.net/?build=&showall=1", "tags": [], "refsource": "CONFIRM"}, {"url": "http://forums.cpanel.net/showthread.php?t=58134", "name": "http://forums.cpanel.net/showthread.php?t=58134", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/20163", "name": "20163", "tags": [], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1016913", "name": "1016913", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/22072", "name": "22072", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in cPanel before 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in (1) mysqladmin and (2) hooksadmin."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-5014", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-09-27T01:07Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:10.8.2_118:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:10.2.0_r82:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:10.8.1_113:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:6.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:9.1.0_r85:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:9.9.1_r3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:6.4.2_stable_48:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:6.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:9.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:9.4.1_r64:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cpanel:cpanel:10.6.0_r137:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2008-09-05T21:11Z"}