CVE-2006-6467

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf", "name": "http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdf", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/23265", "name": "23265", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 do not properly restrict access to SMB file resources, which allows remote attackers to gain unspecified file or directory access via vectors related to (1) visibility of the SMB \"Homes\" share and (2) SMB file system browsing."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-6467", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.8, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-12-11T18:28Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:xerox:workcentre:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "14.050.02.000"}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "14.050.02.000"}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "13.050.02.000"}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "13.050.02.000"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2008-09-05T21:14Z"}