CVE-2006-4315

Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under "Program Files" or its subdirectories.

Published : 2006-08-23 22:04 Updated : 2017-07-20 01:33

7.2
CVSS Score More info
Score 7.2 / 10
7.2
Vendor Product Version URI
Ssh Tectia Client 5.0 cpe:/a:ssh:tectia_client:5.0
Ssh Tectia Server 5.0.1 cpe:/a:ssh:tectia_server:5.0.1
Ssh Tectia Client 5.0.1 cpe:/a:ssh:tectia_client:5.0.1
Ssh Tectia Server 5.0 cpe:/a:ssh:tectia_server:5.0
Ssh Tectia Connector 5.0 cpe:/a:ssh:tectia_connector:5.0
Ssh Tectia Connector 5.0.1 cpe:/a:ssh:tectia_connector:5.0.1
Ssh Tectia Client 4.3.1j cpe:/a:ssh:tectia_client:4.3.1j
Ssh Tectia Server 4.4.4 cpe:/a:ssh:tectia_server:4.4.4
Ssh Tectia Server 4.4.3 cpe:/a:ssh:tectia_server:4.4.3
Ssh Tectia Server 4.4.5 cpe:/a:ssh:tectia_server:4.4.5
Ssh Tectia Server 4.0.4 cpe:/a:ssh:tectia_server:4.0.4
Ssh Tectia Server 4.0.3 cpe:/a:ssh:tectia_server:4.0.3
Ssh Tectia Server 4.2.1 cpe:/a:ssh:tectia_server:4.2.1
Ssh Tectia Server 4.4.2 cpe:/a:ssh:tectia_server:4.4.2
Ssh Tectia Server 4.0.5 cpe:/a:ssh:tectia_server:4.0.5
Ssh Tectia Client 4.3.1 cpe:/a:ssh:tectia_client:4.3.1
Ssh Tectia Client 4.3.3 cpe:/a:ssh:tectia_client:4.3.3
Ssh Tectia Client 4.3.2 cpe:/a:ssh:tectia_client:4.3.2
Ssh Tectia Client 4.3.5 cpe:/a:ssh:tectia_client:4.3.5
Ssh Tectia Client 4.3.4 cpe:/a:ssh:tectia_client:4.3.4
Ssh Tectia Client 4.3.7 cpe:/a:ssh:tectia_client:4.3.7
Ssh Tectia Client 4.3.6 cpe:/a:ssh:tectia_client:4.3.6
Ssh Tectia Server 4.0 cpe:/a:ssh:tectia_server:4.0
Ssh Tectia Client 4.0 cpe:/a:ssh:tectia_client:4.0
Ssh Tectia Server 4.4 cpe:/a:ssh:tectia_server:4.4
Ssh Tectia Client 4.2 cpe:/a:ssh:tectia_client:4.2
Ssh Tectia Server 4.3 cpe:/a:ssh:tectia_server:4.3
Ssh Tectia Client 4.3 cpe:/a:ssh:tectia_client:4.3
Ssh Tectia Client 4.3.8k cpe:/a:ssh:tectia_client:4.3.8k
Ssh Tectia Client 4.4 cpe:/a:ssh:tectia_client:4.4
Ssh Tectia Manager 1.3 cpe:/a:ssh:tectia_manager:1.3
Ssh Tectia Server 4.3.5 cpe:/a:ssh:tectia_server:4.3.5
Ssh Tectia Server 4.3.4 cpe:/a:ssh:tectia_server:4.3.4
Ssh Tectia Server 4.3.7 cpe:/a:ssh:tectia_server:4.3.7
Ssh Tectia Server 4.3.6 cpe:/a:ssh:tectia_server:4.3.6
Ssh Tectia Server 4.3.1 cpe:/a:ssh:tectia_server:4.3.1
Ssh Tectia Server 4.3.3 cpe:/a:ssh:tectia_server:4.3.3
Ssh Tectia Manager 1.4 cpe:/a:ssh:tectia_manager:1.4
Ssh Tectia Server 4.3.2 cpe:/a:ssh:tectia_server:4.3.2
Ssh Tectia Client 4.0.1 cpe:/a:ssh:tectia_client:4.0.1
Ssh Tectia Client 4.0.4 cpe:/a:ssh:tectia_client:4.0.4
Ssh Tectia Client 4.0.3 cpe:/a:ssh:tectia_client:4.0.3
Ssh Tectia Client 4.2.1 cpe:/a:ssh:tectia_client:4.2.1
Ssh Tectia Client 4.4.2 cpe:/a:ssh:tectia_client:4.4.2
Ssh Tectia Client 4.0.5 cpe:/a:ssh:tectia_client:4.0.5
Ssh Tectia Client 4.4.1 cpe:/a:ssh:tectia_client:4.4.1
Ssh Tectia Client 4.4.4 cpe:/a:ssh:tectia_client:4.4.4
Ssh Tectia Client 4.4.3 cpe:/a:ssh:tectia_client:4.4.3
Ssh Tectia Manager 2.1.2 cpe:/a:ssh:tectia_manager:2.1.2
Ssh Tectia Client 4.4.5 cpe:/a:ssh:tectia_client:4.4.5
  1. Ssh (4) Search CVE
    1. Tectia Client (25) Search CVE
      1. 5.0
      2. 5.0.1
      3. 4.3.1j
      4. 4.3.1
      5. 4.3.3
      6. 4.3.2
      7. 4.3.5
      8. 4.3.4
      9. 4.3.7
      10. 4.3.6
      11. 4.0
      12. 4.2
      13. 4.3
      14. 4.3.8k
      15. 4.4
      16. 4.0.1
      17. 4.0.4
      18. 4.0.3
      19. 4.2.1
      20. 4.4.2
      21. 4.0.5
      22. 4.4.1
      23. 4.4.4
      24. 4.4.3
      25. 4.4.5
    2. Tectia Manager (3) Search CVE
      1. 1.3
      2. 1.4
      3. 2.1.2
    3. Tectia Connector (2) Search CVE
      1. 5.0
      2. 5.0.1
    4. Tectia Server (20) Search CVE
      1. 5.0.1
      2. 5.0
      3. 4.4.4
      4. 4.4.3
      5. 4.4.5
      6. 4.0.4
      7. 4.0.3
      8. 4.2.1
      9. 4.4.2
      10. 4.0.5
      11. 4.0
      12. 4.4
      13. 4.3
      14. 4.3.5
      15. 4.3.4
      16. 4.3.7
      17. 4.3.6
      18. 4.3.1
      19. 4.3.3
      20. 4.3.2

CWE

There is no CWE for this CVE.

History of changes

Date Event
2017-07-20 05:56
2006-08-23 22:04

New CVE