CVE-2006-0874 - Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified

CVE-2006-0874

Summary

Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-2006-0854, but the vendor announcement for this issue (from January 8, 2005) is too vague to be sure, and CVE-2006-0854 does not provide version information.

References

Vulnerable Configurations

cpe:2.3:a:intensive_point:iuser_ecommerce:*:*:*:*:*:*:*:*
cpe:2.3:a:intensive_point:iuser_ecommerce:*:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 14-02-2024 - 01:17)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	16787
confirm	http://www.intensivepoint.com/iuser-document.shtml
secunia	19003
xf	iuser-ecommerce-undisclosed(24906)

Last major update

14-02-2024 - 01:17

Published

24-02-2006 - 11:02

Last modified

14-02-2024 - 01:17