ID CVE-2006-4959
Summary Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.3 allows remote attackers to obtain sensitive information, including hostnames, versions, and settings details, via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available.
References
Vulnerable Configurations
  • cpe:2.3:a:sun:secure_global_desktop:3.42:*:enterprise:*:*:*:*:*
    cpe:2.3:a:sun:secure_global_desktop:3.42:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:sun:secure_global_desktop:4.0:*:enterprise:*:*:*:*:*
    cpe:2.3:a:sun:secure_global_desktop:4.0:*:enterprise:*:*:*:*:*
CVSS
Base: 5.0 (as of 17-10-2018 - 21:40)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bid 20135
bugtraq 20060921 [scip_Advisory 2555] Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities
misc http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555
sectrack 1016900
secunia 22037
sreason 1623
vupen ADV-2006-3739
xf sun-ssgd-script-information-disclosure(29076)
Last major update 17-10-2018 - 21:40
Published 23-09-2006 - 10:07
Last modified 17-10-2018 - 21:40
Back to Top