CVE-2006-1832 - OpenCVE

sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Coder-world	Sysinfo

Configuration 1 [-]

cpe:2.3:a:coder-world:sysinfo:1.21:*:*:*:*:*:*:*

References

Link	Resource
http://secunia.com/advisories/19690
http://www.securityfocus.com/bid/17523	Exploit Patch
http://www.vupen.com/english/advisories/2006/1360
https://exchange.xforce.ibmcloud.com/vulnerabilities/25909
https://www.exploit-db.com/exploits/1677

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-04-19T16:00:00

Updated: 2017-10-18T16:57:01

Reserved: 2006-04-19T00:00:00

Link: CVE-2006-1832

JSON object: View

NVD Information

Status : Modified

Published: 2006-04-19T16:06:00.000

Modified: 2017-10-19T01:29:05.923

Link: CVE-2006-1832

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-04-14T00:00:00", "descriptions": [{"lang": "en", "value": "sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-18T16:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "17523", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/17523"}, {"name": "ADV-2006-1360", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/1360"}, {"name": "1677", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/1677"}, {"name": "sysinfo-debugger-information-disclosure(25909)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25909"}, {"name": "19690", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/19690"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-1832", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "17523", "refsource": "BID", "url": "http://www.securityfocus.com/bid/17523"}, {"name": "ADV-2006-1360", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/1360"}, {"name": "1677", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/1677"}, {"name": "sysinfo-debugger-information-disclosure(25909)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25909"}, {"name": "19690", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19690"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-1832", "datePublished": "2006-04-19T16:00:00", "dateReserved": "2006-04-19T00:00:00", "dateUpdated": "2017-10-18T16:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}