Vulnerability Details CVE-2006-2317
Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and earlier allows remote attackers to read arbitrary files under the web root via unspecified attack vectors related to the OpenTextFile method in Scripting.FileSystemObject.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0203.html
- http://secunia.com/advisories/20035
- http://securityreason.com/securityalert/871
- http://www.idealscience.com/ibb/posts.aspx?postID=24415
- http://www.osvdb.org/25455
- http://www.securityfocus.com/archive/1/433248/100/0/threaded
- http://www.securityfocus.com/bid/17920
- http://www.vupen.com/english/advisories/2006/1729
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26348
- http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0203.html
- http://secunia.com/advisories/20035
- http://securityreason.com/securityalert/871
- http://www.idealscience.com/ibb/posts.aspx?postID=24415
- http://www.osvdb.org/25455
- http://www.securityfocus.com/archive/1/433248/100/0/threaded
- http://www.securityfocus.com/bid/17920
- http://www.vupen.com/english/advisories/2006/1729
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26348
Products affected by CVE-2006-2317
-
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta1
-
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta2
-
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta3
-
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta4
-
cpe:2.3:a:ideal_science:idealbb:1.5.0_rc1
-
cpe:2.3:a:ideal_science:idealbb:1.5.1
-
cpe:2.3:a:ideal_science:idealbb:1.5.2
-
cpe:2.3:a:ideal_science:idealbb:1.5.2a
-
cpe:2.3:a:ideal_science:idealbb:1.5.2b
-
cpe:2.3:a:ideal_science:idealbb:1.5.2c
-
cpe:2.3:a:ideal_science:idealbb:1.5.3
-
cpe:2.3:a:ideal_science:idealbb:1.5.3_beta1
-
cpe:2.3:a:ideal_science:idealbb:1.5.3_beta2
-
cpe:2.3:a:ideal_science:idealbb:1.5.3a
-
cpe:2.3:a:ideal_science:idealbb:1.5.3b
-
cpe:2.3:a:ideal_science:idealbb:1.5.4a