CVE-2006-4246: CVE-2006-4246

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-4246

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Usermin before 1.220 (20060629) allows remote attackers to read arbitrary files, possibly related to chfn/save.cgi not properly handling an empty shell parameter, which results in changing root's shell instead of the shell of a specified user.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Usermin save.cgi重置root用户Shell拒绝服务漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Usermin是澳大利亚软件开发者Jamie Cameron和Webmin社区共同开发的一个用于操作用户级别的任务的Web管理接口，它允许Unix系统中非root用户进行接收邮件、执行SSH和邮件转发配置等任务。 Usermin的save.cgi脚本在处理用户输入参数生成执行命令时存在漏洞，远程攻击者可能利用此漏洞重置root用户的登录Shell，导致root用户无法正常登录。远程攻击者可以通过调用"Change User Details"菜单并将用户shell参数设置为空值，save.cgi会将对应的

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-4246

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-4246

Please Login to view more intelligence information

http://www.osreviews.net/reviews/admin/userminx_refsource_MISC
http://www.webmin.com/uchanges.htmlx_refsource_CONFIRM
http://sourceforge.net/tracker/index.php?func=detail&aid=1509145&group_id=17457&atid=485894x_refsource_CONFIRM
http://www.securityfocus.com/bid/18574vdb-entryx_refsource_BID
http://secunia.com/advisories/21981third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21968third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2006/dsa-1177vendor-advisoryx_refsource_DEBIAN
http://www.vupen.com/english/advisories/2006/3668vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/29010vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2006-4246

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2006-4246

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2006-4246

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-4246

III. Intelligence Information for CVE-2006-4246

New Vulnerabilities

V. Comments for CVE-2006-4246

Leave a comment