Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3766

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-3766
Last Modified 05 Sep 2008 05:08:00
Published 21 Jul 2006 10:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3766

Summary

Darren's $5 Script Archive osDate 1.1.7 and earlier allows users to boost their own ratings via a txtrating parameter with a score greater than the intended maximum of 10.

Vulnerable Systems

Application

  • Darrens 5-dollar Script Archive Osdate 1.1.5

  • Darrens 5-dollar Script Archive Osdate 1.1.6

  • Darrens 5-dollar Script Archive Osdate 1.1.7


References

BUGTRAQ - 20060719 Re: osDate 1.1.7 multiple vulnerabilities

BUGTRAQ - 20060813 osDate 1.1.8 - Multiple HTML Injection Vulnerability - fixed

BUGTRAQ - 20060717 osDate 1.1.7 multiple vulnerabilities

SECTRACK - 1016700


Last Updated: 27 May 2016 10:43:06