Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0174

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2006-0174
Last Modified 07 Mar 2011 09:29:29
Published 11 Jan 2006 04:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-0174

Summary

Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to obtain sensitive information (intranet IP addresses and enumerations of valid parameter values) via a direct request to hc, which reveals the information in an error message or a cookie.

Vulnerable Systems

Application

  • Hummingbird Collaboration 5.2

  • Hummingbird Collaboration 5.21

  • Hummingbird Enterprise Collaboration 5.2

  • Hummingbird Enterprise Collaboration 5.21


References

VUPEN - ADV-2006-0145

BID - 16195

BUGTRAQ - 20060110 Multiple Vulnerabilities in Hummingbird Collaboration

MISC - http://www.securenetwork.it/advisories/sn-2006-01.html

SECUNIA - 18411

XF - hummingbird-enterprise-information-disclosure(24069)

SREASON - 328


Last Updated: 27 May 2016 10:41:34