Details of VAR-200609-0424

ID

VAR-200609-0424

CVE

CVE-2006-5001

TITLE

WS_FTP Server of log analyzer In Files Vulnerability that prevents the display of certain important information on tabs such as

Trust: 0.8

sources: JVNDB: JVNDB-2006-002168

DESCRIPTION

Unspecified vulnerability in the log analyzer in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, prevents certain sensitive information from being displayed in the (1) Files and (2) Summary tabs. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue

Trust: 1.71

sources: NVD: CVE-2006-5001 // JVNDB: JVNDB-2006-002168 // VULHUB: VHN-21109

AFFECTED PRODUCTS

vendor:	ipswitch	model:	ws ftp server	scope:	eq	version:	5.03	Trust: 1.6
vendor:	ipswitch	model:	ws ftp server	scope:	eq	version:	5.02	Trust: 1.6
vendor:	progress	model:	ws ftp server	scope:	lte	version:	5.05	Trust: 1.0
vendor:	progress	model:	ws ftp server	scope:	eq	version:	5.0.2	Trust: 1.0
vendor:	ipswitch	model:	ws ftp server	scope:	eq	version:	hotfix 1	Trust: 0.8
vendor:	ipswitch	model:	ws ftp server	scope:	eq	version:	5.0 other previous versions	Trust: 0.8
vendor:	ipswitch	model:	ws ftp server	scope:	lt	version:	5.05	Trust: 0.8
vendor:	ipswitch	model:	ws ftp server	scope:	eq	version:	5.0.2	Trust: 0.6
vendor:	ipswitch	model:	ws ftp server	scope:	eq	version:	5.05	Trust: 0.6

sources: JVNDB: JVNDB-2006-002168 // CNNVD: CNNVD-200609-452 // NVD: CVE-2006-5001

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2006-5001
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2006-5001
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-200609-452
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-21109
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2006-5001
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-21109
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-21109 // JVNDB: JVNDB-2006-002168 // CNNVD: CNNVD-200609-452 // NVD: CVE-2006-5001

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-noinfo	Trust: 0.8
problemtype:	CWE-DesignError	Trust: 0.8

sources: JVNDB: JVNDB-2006-002168 // NVD: CVE-2006-5001

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200609-452

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200609-452

CONFIGURATIONS

sources: JVNDB: JVNDB-2006-002168

PATCH

title:

WS_FTP

url:

http://www.ipswitchft.com/

Trust: 0.8

sources: JVNDB: JVNDB-2006-002168

EXTERNAL IDS

db:	NVD	id:	CVE-2006-5001	Trust: 2.5
db:	JVNDB	id:	JVNDB-2006-002168	Trust: 0.8
db:	CNNVD	id:	CNNVD-200609-452	Trust: 0.7
db:	BID	id:	84238	Trust: 0.1
db:	VULHUB	id:	VHN-21109	Trust: 0.1

sources: VULHUB: VHN-21109 // JVNDB: JVNDB-2006-002168 // CNNVD: CNNVD-200609-452 // NVD: CVE-2006-5001

REFERENCES

url:	http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-5001	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-5001	Trust: 0.8

sources: VULHUB: VHN-21109 // JVNDB: JVNDB-2006-002168 // CNNVD: CNNVD-200609-452 // NVD: CVE-2006-5001

SOURCES

db:	VULHUB	id:	VHN-21109
db:	JVNDB	id:	JVNDB-2006-002168
db:	CNNVD	id:	CNNVD-200609-452
db:	NVD	id:	CVE-2006-5001

LAST UPDATE DATE

2024-08-14T15:04:34.526000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-21109	date:	2019-08-13T00:00:00
db:	JVNDB	id:	JVNDB-2006-002168	date:	2012-09-25T00:00:00
db:	CNNVD	id:	CNNVD-200609-452	date:	2019-08-14T00:00:00
db:	NVD	id:	CVE-2006-5001	date:	2023-10-11T14:45:44.747

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-21109	date:	2006-09-26T00:00:00
db:	JVNDB	id:	JVNDB-2006-002168	date:	2012-09-25T00:00:00
db:	CNNVD	id:	CNNVD-200609-452	date:	2006-09-26T00:00:00
db:	NVD	id:	CVE-2006-5001	date:	2006-09-26T20:07:00