1. CVE-Search
  2. CVE-2006-7037
ID CVE-2006-7037
Summary Mathcad 12 through 13.1 allows local users to bypass the security features by directly accessing or editing the XML representation of the worksheet with a text editor or other program, which allows attackers to (1) bypass password protection by replacing the password field with a hash of a known password, (2) modify timestamps to avoid detection of modifications, (3) remove locks by removing the "is-locked" attribute, and (4) view locked data, which is stored in plaintext.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_95:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_95:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
  • cpe:2.3:a:mathsoft:mathcad:12:*:*:*:*:*:*:*
    cpe:2.3:a:mathsoft:mathcad:12:*:*:*:*:*:*:*
  • cpe:2.3:a:mathsoft:mathcad:13:*:*:*:*:*:*:*
    cpe:2.3:a:mathsoft:mathcad:13:*:*:*:*:*:*:*
  • cpe:2.3:a:mathsoft:mathcad:13.1:*:*:*:*:*:*:*
    cpe:2.3:a:mathsoft:mathcad:13.1:*:*:*:*:*:*:*
CVSS
Base: 4.4 (as of 16-10-2018 - 16:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:M/Au:N/C:P/I:P/A:P
refmap via4
bugtraq 20060608 Mathcad Area Lock Vulnerability
sreason 2305
xf
  • mathcad-area-password-security-bypass(27115)
  • mathcad-islocked-security-bypass(27117)
  • mathcad-locked-area-security-bypass(27118)
  • mathcad-timestamp-security-bypass(27116)
Last major update 16-10-2018 - 16:29
Published 23-02-2007 - 03:28
Last modified 16-10-2018 - 16:29
Back to Top