CVE-2006-2155

{"id": "CVE-2006-2155", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-05-03T10:02:00.000", "references": [{"url": "http://kb.dantz.com/display/2n/articleDirect/index.asp?aid=9507&r=0.7344324", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/19850", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/1612", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26227", "source": "cve@mitre.org"}, {"url": "http://kb.dantz.com/display/2n/articleDirect/index.asp?aid=9507&r=0.7344324", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/19850", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/1612", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26227", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 allows local users to execute arbitrary code by replacing the Retrospect.exe file, possibly due to improper file permissions."}], "lastModified": "2024-11-21T00:10:40.943", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:emc:retrospect:*:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A891F97C-905B-4B59-9BEE-78967D3FC036", "versionEndIncluding": "6.5"}, {"criteria": "cpe:2.3:a:emc:retrospect:*:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B81A28AB-E359-4F07-813C-82CF5E5BBF1B", "versionEndIncluding": "7.0"}, {"criteria": "cpe:2.3:a:emc:retrospect:*:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "289D648B-DE4F-46C9-935A-5A539C28BD37", "versionEndIncluding": "7.5"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "Retrospect 7.5:\r\nApply Retrospect Driver Update 7.5.1.105.\r\nhttp://ftp.dantz.com/pub/updates/ru751105.exe\r\n\r\nRetrospect 7.0:\r\nApply Application Security Update 7.0.344 (requires Retrospect 7.0.326 or Retrospect Express 7.0.301).\r\nhttp://download.dantz.com/archives/Retro-EN_7_0_344.exe\r\n\r\nRetrospect 6.5:\r\nApply Application Security Update 6.5.382 (requires Retrospect 6.5.350 or Retrospect Express 6.5.350).\r\nhttp://download.dantz.com/archives/Retro-EN_6_5_382.exe"}