Vulnerability Details CVE-2006-4959
Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.3 allows remote attackers to obtain sensitive information, including hostnames, versions, and settings details, via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/22037
- http://securityreason.com/securityalert/1623
- http://securitytracker.com/id?1016900
- http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555
- http://www.securityfocus.com/archive/1/446566/100/0/threaded
- http://www.securityfocus.com/bid/20135
- http://www.vupen.com/english/advisories/2006/3739
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29076
- http://secunia.com/advisories/22037
- http://securityreason.com/securityalert/1623
- http://securitytracker.com/id?1016900
- http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2555
- http://www.securityfocus.com/archive/1/446566/100/0/threaded
- http://www.securityfocus.com/bid/20135
- http://www.vupen.com/english/advisories/2006/3739
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29076
Products affected by CVE-2006-4959
-
cpe:2.3:a:sun:secure_global_desktop:3.42
-
cpe:2.3:a:sun:secure_global_desktop:4.0