Vulnerability Details CVE-2006-6510
An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed "safe for scripting", which allows local users to bypass security protections and read arbitrary files via certain functions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.8%
CVSS Severity
CVSS v2 Score 1.7
References
- http://secunia.com/advisories/23253
- http://www.securityfocus.com/archive/1/454185/100/0/threaded
- http://www.securityfocus.com/bid/21567
- http://www.sitekiosk.com/th_support/versions/index.php3?id=39
- http://www.vupen.com/english/advisories/2006/4985
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30878
- http://secunia.com/advisories/23253
- http://www.securityfocus.com/archive/1/454185/100/0/threaded
- http://www.securityfocus.com/bid/21567
- http://www.sitekiosk.com/th_support/versions/index.php3?id=39
- http://www.vupen.com/english/advisories/2006/4985
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30878
Products affected by CVE-2006-6510
-
cpe:2.3:a:sitekiosk:sitekiosk:4.9.11
-
cpe:2.3:a:sitekiosk:sitekiosk:4.9.14
-
cpe:2.3:a:sitekiosk:sitekiosk:4.96
-
cpe:2.3:a:sitekiosk:sitekiosk:4.96.0
-
cpe:2.3:a:sitekiosk:sitekiosk:4.96.3
-
cpe:2.3:a:sitekiosk:sitekiosk:4.97.0
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.19
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.238
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.248
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.26
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.264
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.32
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.35
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.36
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.38
-
cpe:2.3:a:sitekiosk:sitekiosk:5.0.41
-
cpe:2.3:a:sitekiosk:sitekiosk:5.5.34
-
cpe:2.3:a:sitekiosk:sitekiosk:5.5.35
-
cpe:2.3:a:sitekiosk:sitekiosk:5.5.36
-
cpe:2.3:a:sitekiosk:sitekiosk:5.5.39
-
cpe:2.3:a:sitekiosk:sitekiosk:5.5.45
-
cpe:2.3:a:sitekiosk:sitekiosk:6.0.14
-
cpe:2.3:a:sitekiosk:sitekiosk:6.0.98_final
-
cpe:2.3:a:sitekiosk:sitekiosk:6.2.51
-
cpe:2.3:a:sitekiosk:sitekiosk:6.5.149