CVE-2006-4315
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/08/2006
Last modified:
03/04/2025
Description
Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under "Program Files" or its subdirectories.
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:ssh:tectia_client:4.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.0.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.0.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.0.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.0.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.1j:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ssh:tectia_client:4.3.6:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://securitytracker.com/id?1016743=
- http://www.securityfocus.com/bid/19679
- http://www.ssh.com/company/news/2006/english/security/article/775/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28566
- http://securitytracker.com/id?1016743=
- http://www.securityfocus.com/bid/19679
- http://www.ssh.com/company/news/2006/english/security/article/775/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28566