Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2511

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2006-2511
Last Modified 05 Sep 2008 05:04:44
Published 22 May 2006 03:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-2511

Summary

The ActiveX version of FrontRange iHEAT allows remote authenticated users to run arbitrary programs or access arbitrary files on the host machine by uploading a file with an extension that is not associated with an application, and selecting a file from the "Open With..." dialog.

Vulnerable Systems

Application

  • Frontrange Iheat


References

BUGTRAQ - 20060516 FrontRange iHeat Vulnerability

SECTRACK - 1016124

XF - frontrange-iheat-unauth-access(26711)

SECUNIA - 20165


Last Updated: 27 May 2016 10:42:39