CVE-2006-4620
Severity Score
4.6
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The useredit_account.wdm module in Alt-N WebAdmin 3.2.5 running with MDaemon 9.0.6, and possibly earlier versions, allows remote authenticated domain administrators to gain privileges and obtain access to the system mail queue by modifying the mailbox of the MDaemon user account to use the mailbox of another account.
El módulo useredit_account.wdm en Alt-N WebAdmin 3.2.5 que funciona con MDaemon 9.0.6, y posiblemente versiones anteriores, permite a un administrador de dominio remoto validado conseguir privilegios y obtener acceso a la cola del sistema de correo a través de la modificación de la bandeja de entrada de la cuenta de usuario de MDaemon para usar la bandeja de entrada de otra cuenta de usuario.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-09-06 CVE Reserved
- 2006-09-07 CVE Published
- 2023-08-18 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://securityreason.com/securityalert/1516 | Third Party Advisory | |
| http://www.osvdb.org/28548 | Vdb Entry | |
| http://www.securityfocus.com/archive/1/445153/100/0/threaded | Mailing List | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/28776 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://files.altn.com/WebAdmin/Release/RelNotes_en.txt | 2018-10-17 | |
| http://secunia.com/advisories/21727 | 2018-10-17 | |
| http://www.teklow.com/advisories/TTG0602.txt | 2018-10-17 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Alt-n Search vendor "Alt-n" | Webadmin Search vendor "Alt-n" for product "Webadmin" | <= 3.2.5 Search vendor "Alt-n" for product "Webadmin" and version " <= 3.2.5" | - |
Affected
| ||||||
| Alt-n Search vendor "Alt-n" | Webadmin Search vendor "Alt-n" for product "Webadmin" | 3.0.2 Search vendor "Alt-n" for product "Webadmin" and version "3.0.2" | - |
Affected
| ||||||
| Alt-n Search vendor "Alt-n" | Webadmin Search vendor "Alt-n" for product "Webadmin" | 3.0.3 Search vendor "Alt-n" for product "Webadmin" and version "3.0.3" | - |
Affected
| ||||||
| Alt-n Search vendor "Alt-n" | Webadmin Search vendor "Alt-n" for product "Webadmin" | 3.2.3 Search vendor "Alt-n" for product "Webadmin" and version "3.2.3" | - |
Affected
| ||||||
| Alt-n Search vendor "Alt-n" | Webadmin Search vendor "Alt-n" for product "Webadmin" | 3.2.4 Search vendor "Alt-n" for product "Webadmin" and version "3.2.4" | - |
Affected
| ||||||