1. CVE-Search
  2. CVE-2006-2096
ID CVE-2006-2096
Summary plug.php in Land Down Under (LDU) 802 and earlier allows remote attackers to obtain sensitive information via an invalid (1) month or (2) year parameter, which reveals the path in an error message.
References
Vulnerable Configurations
  • cpe:2.3:a:neocrome:land_down_under:601:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:601:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:602:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:602:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:700.01:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:700.01:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:700.02:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:700.02:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:700.03:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:700.03:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:700.04:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:700.04:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:700.05:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:700.05:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:701:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:701:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:800:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:800:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:801:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:801:*:*:*:*:*:*:*
  • cpe:2.3:a:neocrome:land_down_under:*:*:*:*:*:*:*:*
    cpe:2.3:a:neocrome:land_down_under:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 18-10-2018 - 16:38)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bugtraq 20060427 Land Down Under 802 and below version Path Disclosure Vulnerability
sreason 814
xf landdownunder-monthyear-path-disclosure(26143)
Last major update 18-10-2018 - 16:38
Published 29-04-2006 - 10:02
Last modified 18-10-2018 - 16:38
Back to Top