Vulnerability Details CVE-2006-4313
Multiple unspecified vulnerabilities in Cisco VPN 3000 series concentrators before 4.1, 4.1.x up to 4.1(7)L, and 4.7.x up to 4.7(2)F allow attackers to execute the (1) CWD, (2) MKD, (3) CDUP, (4) RNFR, (5) SIZE, and (6) RMD FTP commands to modify files or create and delete directories via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.551
EPSS Ranking 97.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/21617
- http://securitytracker.com/id?1016737
- http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml
- http://www.osvdb.org/28138
- http://www.osvdb.org/28139
- http://www.securityfocus.com/bid/19680
- http://www.vupen.com/english/advisories/2006/3368
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28539
- http://secunia.com/advisories/21617
- http://securitytracker.com/id?1016737
- http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml
- http://www.osvdb.org/28138
- http://www.osvdb.org/28139
- http://www.securityfocus.com/bid/19680
- http://www.vupen.com/english/advisories/2006/3368
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28539
Products affected by CVE-2006-4313
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.0
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.0.1
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.0.5.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.5.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.7.a
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.7.b
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.7.l
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7.1
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7.1.f
-
cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7.2.f