Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0697

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-0697
Last Modified 03 Jan 2013 12:00:00
Published 15 Feb 2006 06:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0697

Summary

Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests.

Vulnerable Systems

Application

  • Zen-cart Zen Cart 1.1.0

  • Zen-cart Zen Cart 1.1.3

  • Zen-cart Zen Cart 1.2.0d

  • Zen-cart Zen Cart 1.2.1

  • Zen-cart Zen Cart 1.2.1d

  • Zen-cart Zen Cart 1.2.2d

  • Zen-cart Zen Cart 1.2.3d

  • Zen-cart Zen Cart 1.2.4.1

  • Zen-cart Zen Cart 1.2.4d

  • Zen-cart Zen Cart 1.2.5d

  • Zen-cart Zen Cart 1.2.6d


References

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=392886

SECUNIA - 18801

VUPEN - ADV-2006-0546


Last Updated: 27 May 2016 11:01:31