CVE-2006-6639

{"id": "CVE-2006-6639", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-12-19T20:28:00.000", "references": [{"url": "http://secunia.com/advisories/23024", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/21644", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in chetcpasswd 2.4.1 allow local users to gain privileges via unspecified vectors related to executing (1) the cp program, (2) the mail program, or (3) the program specified in the post_change configuration line."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en chetcpasswd 2.4.1 permite a usuarios locales obtener privilegios mediante vectores no especificados relacionados con la ejecuci\u00f3n (1) del programa cp, (2) el programa mail, o (3) el programa especificado en la l\u00ednea de configuraci\u00f3n post_change."}], "lastModified": "2008-09-05T21:15:15.097", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:chetcpasswd:chetcpasswd:2.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E8693FF-835B-4A58-AAC8-D9974A9BDC68"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}