CVE-2006-4315 (GCVE-0-2006-4315)
Vulnerability from cvelistv5
Published
2006-08-23 22:00
Modified
2024-08-07 19:06
Severity ?
Summary
Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under "Program Files" or its subdirectories.
References
cve@mitre.orghttp://securitytracker.com/id?1016743
cve@mitre.orghttp://www.securityfocus.com/bid/19679
cve@mitre.orghttp://www.ssh.com/company/news/2006/english/security/article/775/Patch, Vendor Advisory
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/28566
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1016743
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/19679
af854a3a-2127-422b-91ae-364da2661108http://www.ssh.com/company/news/2006/english/security/article/775/Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/28566
Impacted products
Vendor Product Version
n/a n/a Version: n/a
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-07T19:06:07.126Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "19679",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/19679",
               },
               {
                  name: "1016743",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://securitytracker.com/id?1016743",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www.ssh.com/company/news/2006/english/security/article/775/",
               },
               {
                  name: "ssh-tectia-pathname-privilege-escalation(28566)",
                  tags: [
                     "vdb-entry",
                     "x_refsource_XF",
                     "x_transferred",
                  ],
                  url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/28566",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2006-08-23T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under \"Program Files\" or its subdirectories.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2017-07-19T15:57:01",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "19679",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/19679",
            },
            {
               name: "1016743",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://securitytracker.com/id?1016743",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www.ssh.com/company/news/2006/english/security/article/775/",
            },
            {
               name: "ssh-tectia-pathname-privilege-escalation(28566)",
               tags: [
                  "vdb-entry",
                  "x_refsource_XF",
               ],
               url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/28566",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2006-4315",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under \"Program Files\" or its subdirectories.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "19679",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/19679",
                  },
                  {
                     name: "1016743",
                     refsource: "SECTRACK",
                     url: "http://securitytracker.com/id?1016743",
                  },
                  {
                     name: "http://www.ssh.com/company/news/2006/english/security/article/775/",
                     refsource: "CONFIRM",
                     url: "http://www.ssh.com/company/news/2006/english/security/article/775/",
                  },
                  {
                     name: "ssh-tectia-pathname-privilege-escalation(28566)",
                     refsource: "XF",
                     url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/28566",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2006-4315",
      datePublished: "2006-08-23T22:00:00",
      dateReserved: "2006-08-23T00:00:00",
      dateUpdated: "2024-08-07T19:06:07.126Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      fkie_nvd: {
         configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6693DC2D-CDA1-4E37-9569-58874F55A48A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16CDE975-9E08-493B-9385-3EC2CABC4A15\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A63EA6B-2400-48C4-924D-3509971CCBEE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0658F08E-2596-4D8E-91AA-44A9DBE8F151\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74169893-A34F-49FB-8C83-36C4AA808925\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"013E94CC-AF68-44D0-826F-28B1825A8DA0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C9981E30-0D54-4464-8287-E450E7E8F770\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4ED17577-F56D-48DF-8863-B4FF039C47D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B74A91E2-C93E-49F4-B349-8E4CEC285C03\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.1j:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FBF7244A-BFF7-4C7C-82FF-6B53236DB86D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5BADA4CC-FC94-427A-AF93-9AAFDAADDB91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F1D6B7F-8B52-42C0-8613-740CACFB3463\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5024EC6-2A47-4ACE-A661-B78D314C7D0F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA64A6E8-0EB7-4BCA-A7AA-245A466C2F22\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5058DC44-835D-4BD9-B550-E5CB22F6475F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23ED4911-6CF5-4562-B421-A328D7BE0291\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.3.8k:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E7F3388A-39FA-4A3A-819A-764A16AAEB54\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"81DDF3D8-35EA-4677-B1AC-1CA674EEBCD3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F37366E9-F1B6-4458-AE1C-790405AC8740\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8C727829-5E3A-41F6-BAB3-01AED39674D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1CF57477-FB53-49CC-BAD4-CDC0FD9363F5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"65FB72FC-37EE-4D42-893E-9C0924EEA2E5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:4.4.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B18D681B-ACE1-47E3-851D-57DA47D1E2F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F470797-BBE4-4360-A38A-2722B8CF3BB5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_client:5.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB6587AA-E91D-4194-81D0-FCF1AA382CAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_connector:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D921A61E-D401-404E-B539-DAFE05D001F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_connector:5.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"30A3B9E9-3643-443B-A19A-2AE989832C50\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_manager:1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"207A0CC3-240E-467E-A82D-DB9751378C2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_manager:1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23D62693-EA3F-406E-AC66-79B1CD566F1C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_manager:2.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9CF059D3-7250-44F9-9337-AD66A0F28071\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3E4480D2-1B5C-443D-8D7F-976885C33BDA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"795DEA94-79D6-4132-B205-AB098E92216A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CD05A3E8-105D-4712-8BBE-2D5CF4F78890\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8D6691FF-77F2-4AE3-B49F-BFB8744AD046\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"075B6E8D-4C4B-4E98-94C6-52B842BE65FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"27B99F6E-712C-4205-9185-26F543EFC881\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0AF0262B-1451-40CA-9DD1-F2DEA793BD61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C27E0224-9431-49EF-8B32-850CDF6FFFE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88A88A21-7427-4452-8C2A-6C31542FA83C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3DCEAA0-509A-4978-BE53-0CBE084366FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3203DC73-05F2-4A28-9E62-3D87B482586A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BDA1AAC-3FCF-47D8-A6B4-9DB0D776CE14\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"64F4CDF1-695A-4677-A829-74BB365BF4FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BBEF55DD-FC87-42A3-9DAF-9862AA9649CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC0FA974-7671-4FB7-BB36-274B5970EBAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6C2BA84-A520-489E-AF08-F3D35B0D580B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"011F841A-4F1B-49B2-B379-9FE126141568\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:4.4.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3C54819-CF51-4BBE-873F-4A0E2072D10F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"802C46F0-0FE2-42BD-910A-08CC9639BC4E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ssh:tectia_server:5.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3B2E96C8-F8F8-4002-B242-3ADDF1E84B7D\"}]}]}]",
         descriptions: "[{\"lang\": \"en\", \"value\": \"Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under \\\"Program Files\\\" or its subdirectories.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de ruta no confiable en la b\\u00fasqueda no literal de Windows en m\\u00faltiples productos SSH de Tectia, incluyendo el Client/Server/Connector 5.0.0 y 5.0.1 y Client/Server anterior a 4.4.5, y Manager 2.12 y anteriores, cuando se ejecutan en Windows, podr\\u00edan permitir a usuarios locales escalar privilegios mediante un archivo de programa malicioso en \\\"Archivos de Programa\\\" o sus subdirectorios.\"}]",
         id: "CVE-2006-4315",
         lastModified: "2024-11-21T00:15:39.340",
         metrics: "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
         published: "2006-08-23T22:04:00.000",
         references: "[{\"url\": \"http://securitytracker.com/id?1016743\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/19679\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.ssh.com/company/news/2006/english/security/article/775/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/28566\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1016743\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/19679\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ssh.com/company/news/2006/english/security/article/775/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/28566\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
         sourceIdentifier: "cve@mitre.org",
         vulnStatus: "Modified",
         weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]",
      },
      nvd: "{\"cve\":{\"id\":\"CVE-2006-4315\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-08-23T22:04:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under \\\"Program Files\\\" or its subdirectories.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de ruta no confiable en la búsqueda no literal de Windows en múltiples productos SSH de Tectia, incluyendo el Client/Server/Connector 5.0.0 y 5.0.1 y Client/Server anterior a 4.4.5, y Manager 2.12 y anteriores, cuando se ejecutan en Windows, podrían permitir a usuarios locales escalar privilegios mediante un archivo de programa malicioso en \\\"Archivos de Programa\\\" o sus subdirectorios.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6693DC2D-CDA1-4E37-9569-58874F55A48A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16CDE975-9E08-493B-9385-3EC2CABC4A15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A63EA6B-2400-48C4-924D-3509971CCBEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0658F08E-2596-4D8E-91AA-44A9DBE8F151\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74169893-A34F-49FB-8C83-36C4AA808925\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"013E94CC-AF68-44D0-826F-28B1825A8DA0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9981E30-0D54-4464-8287-E450E7E8F770\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4ED17577-F56D-48DF-8863-B4FF039C47D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B74A91E2-C93E-49F4-B349-8E4CEC285C03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.1j:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBF7244A-BFF7-4C7C-82FF-6B53236DB86D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5BADA4CC-FC94-427A-AF93-9AAFDAADDB91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F1D6B7F-8B52-42C0-8613-740CACFB3463\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5024EC6-2A47-4ACE-A661-B78D314C7D0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA64A6E8-0EB7-4BCA-A7AA-245A466C2F22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5058DC44-835D-4BD9-B550-E5CB22F6475F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23ED4911-6CF5-4562-B421-A328D7BE0291\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.3.8k:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7F3388A-39FA-4A3A-819A-764A16AAEB54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81DDF3D8-35EA-4677-B1AC-1CA674EEBCD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F37366E9-F1B6-4458-AE1C-790405AC8740\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C727829-5E3A-41F6-BAB3-01AED39674D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1CF57477-FB53-49CC-BAD4-CDC0FD9363F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65FB72FC-37EE-4D42-893E-9C0924EEA2E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:4.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B18D681B-ACE1-47E3-851D-57DA47D1E2F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F470797-BBE4-4360-A38A-2722B8CF3BB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_client:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB6587AA-E91D-4194-81D0-FCF1AA382CAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_connector:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D921A61E-D401-404E-B539-DAFE05D001F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_connector:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30A3B9E9-3643-443B-A19A-2AE989832C50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_manager:1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"207A0CC3-240E-467E-A82D-DB9751378C2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_manager:1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23D62693-EA3F-406E-AC66-79B1CD566F1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_manager:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CF059D3-7250-44F9-9337-AD66A0F28071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E4480D2-1B5C-443D-8D7F-976885C33BDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"795DEA94-79D6-4132-B205-AB098E92216A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD05A3E8-105D-4712-8BBE-2D5CF4F78890\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D6691FF-77F2-4AE3-B49F-BFB8744AD046\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"075B6E8D-4C4B-4E98-94C6-52B842BE65FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27B99F6E-712C-4205-9185-26F543EFC881\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AF0262B-1451-40CA-9DD1-F2DEA793BD61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C27E0224-9431-49EF-8B32-850CDF6FFFE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88A88A21-7427-4452-8C2A-6C31542FA83C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3DCEAA0-509A-4978-BE53-0CBE084366FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3203DC73-05F2-4A28-9E62-3D87B482586A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BDA1AAC-3FCF-47D8-A6B4-9DB0D776CE14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64F4CDF1-695A-4677-A829-74BB365BF4FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBEF55DD-FC87-42A3-9DAF-9862AA9649CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC0FA974-7671-4FB7-BB36-274B5970EBAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6C2BA84-A520-489E-AF08-F3D35B0D580B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"011F841A-4F1B-49B2-B379-9FE126141568\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:4.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3C54819-CF51-4BBE-873F-4A0E2072D10F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"802C46F0-0FE2-42BD-910A-08CC9639BC4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssh:tectia_server:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B2E96C8-F8F8-4002-B242-3ADDF1E84B7D\"}]}]}],\"references\":[{\"url\":\"http://securitytracker.com/id?1016743\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/19679\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ssh.com/company/news/2006/english/security/article/775/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/28566\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1016743\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/19679\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ssh.com/company/news/2006/english/security/article/775/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/28566\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
   },
}


Log in or create an account to share your comment.

Security Advisory comment format.

This schema specifies the format of a comment related to a security advisory.

UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).



Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.