CVE-2006-3217

{"id": "CVE-2006-3217", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.6, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2006-06-24T01:06:00.000", "references": [{"url": "http://secunia.com/advisories/20759", "tags": ["Exploit", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/1145", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/437937/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/18576", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.srlabs.net/bulten/JaguarEdit_2.htm", "tags": ["Exploit", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.srlabs.net/bulten/source/Jaguar.htm", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/2489", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27290", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/20759", "tags": ["Exploit", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securityreason.com/securityalert/1145", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/437937/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/18576", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.srlabs.net/bulten/JaguarEdit_2.htm", "tags": ["Exploit", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.srlabs.net/bulten/source/Jaguar.htm", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/2489", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27290", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "JaguarEditControl (JEdit) ActiveX Control 1.1.0.20 and earlier allows remote attackers to obtain sensitive information, such as the username and MAC and IP addresses, by setting the test field to certain values such as 2404 or 2790, then reading the information from the .JText field."}, {"lang": "es", "value": "JaguarEditControl (JEdit) ActiveX Control v1.1.0.20 y anteriores permiten a atacantes remotos obtener informaci\u00f3n sensible, como el nombre de usuario, direcci\u00f3n MAC y direcci\u00f3n IP, fijando el campo text a ciertos valores como a 2404 o 2790, entonces leyendo la informaci\u00f3n desde el campo .JText."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:jaguarsoft:jaguaredit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59EB165F-0C51-4196-A634-FC10FD885CE5", "versionEndIncluding": "1.1.0.20"}, {"criteria": "cpe:2.3:a:jaguarsoft:jaguaredit:1.1.0.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97571C4D-F9A9-48BA-A569-E380DEBB580E"}, {"criteria": "cpe:2.3:a:jaguarsoft:jaguaredit:1.1.0.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "349540FD-5263-4696-A5AB-F877A3456230"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}