CVE-2006-0630

{"id": "CVE-2006-0630", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-02-10T11:02:00.000", "references": [{"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-February/041973.html", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/18713", "source": "cve@mitre.org"}, {"url": "http://www.security.nnov.ru/advisories/thebatspoof.asp", "tags": ["Exploit", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/424129/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/16515", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24535", "source": "cve@mitre.org"}, {"url": "https://www.ritlabs.com/bt/bug_view_advanced_page.php?bug_id=0003029", "source": "cve@mitre.org"}, {"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-February/041973.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18713", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.security.nnov.ru/advisories/thebatspoof.asp", "tags": ["Exploit", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/424129/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/16515", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24535", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.ritlabs.com/bt/bug_view_advanced_page.php?bug_id=0003029", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "RITLabs The Bat! before 3.0.0.15 displays certain important headers from encapsulated data in message/partial MIME messages, instead of the real headers, which is in violation of RFC2046 header merging rules and allows remote attackers to spoof the origin of e-mail by sending a fragmented message, as demonstrated using spoofed Received: and Message-ID: headers."}], "lastModified": "2024-11-21T00:06:57.523", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5896B50B-719E-4BCD-B481-B6C5A2783D29"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9DE6F73-C434-4760-A07C-5AE9F5280F5F"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2FAFE95B-1557-4D99-93DB-A3DE2E3A7A77"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "287557CC-0854-4F6F-9E3A-9592A817BE21"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D45AF103-012C-4ED1-B241-233DA9780E8A"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90B7F9BE-993C-4675-B000-4349DFF2698B"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC28D8E5-D0AA-4967-9048-3D899AFC7B52"}, {"criteria": "cpe:2.3:a:ritlabs:the_bat:3.0.0.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2D97DBB-CC22-49E9-A74B-C40BFCD9BEC7"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}