CVE-2006-3159 - Vulnerability Details - OpenCVE

pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.00079.

Key SSVC decision points have not yet been added.

Vendors	Products
Sun	Iplanet Messaging Server One Messaging Server

Configuration 1 [-]

OR	cpe:2.3:a:sun:iplanet_messaging_server:5.2:::::::*
	cpe:2.3:a:sun:one_messaging_server:5.2:::::::*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2006-3156	pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html
http://secunia.com/advisories/20919
http://securitytracker.com/id?1016312
http://securitytracker.com/id?1016416
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1
http://www.securityfocus.com/bid/18749
http://www.vupen.com/english/advisories/2006/2633
https://exchange.xforce.ibmcloud.com/vulnerabilities/27220

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-06-22T22:00:00

Updated: 2024-08-07T18:16:05.946Z

Reserved: 2006-06-22T00:00:00

Link: CVE-2006-3159

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2006-06-22T22:06:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2006-3159

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-06-14T00:00:00", "descriptions": [{"lang": "en", "value": "pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1016416", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016416"}, {"name": "102496", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"name": "1016312", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016312"}, {"name": "iplanet-msgconf-symlink(27220)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"name": "ADV-2006-2633", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"name": "20060614 Sun iPlanet Messaging Server 5.2 root password compromise", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"name": "18749", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18749"}, {"name": "20919", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20919"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3159", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1016416", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016416"}, {"name": "102496", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"name": "1016312", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016312"}, {"name": "iplanet-msgconf-symlink(27220)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"name": "ADV-2006-2633", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"name": "20060614 Sun iPlanet Messaging Server 5.2 root password compromise", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"name": "18749", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18749"}, {"name": "20919", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20919"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:16:05.946Z"}, "title": "CVE Program Container", "references": [{"name": "1016416", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016416"}, {"name": "102496", "tags": ["vendor-advisory", "x_refsource_SUNALERT", "x_transferred"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"name": "1016312", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016312"}, {"name": "iplanet-msgconf-symlink(27220)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"name": "ADV-2006-2633", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"name": "20060614 Sun iPlanet Messaging Server 5.2 root password compromise", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"name": "18749", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18749"}, {"name": "20919", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20919"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3159", "datePublished": "2006-06-22T22:00:00", "dateReserved": "2006-06-22T00:00:00", "dateUpdated": "2024-08-07T18:16:05.946Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sun:iplanet_messaging_server:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "6AB46EE9-8B54-4C14-8850-C7D5B6C62BBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:sun:one_messaging_server:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "8618D65B-CF77-46AF-8D2E-8D36DAAFFD34", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message."}, {"lang": "es", "value": "pipe_master de Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) permite a usuarios locales leer partes de archivos restringidos a trav\u00e9s de un ataque \"symlink\" (de enlace simb\u00f3licio) en msg.conf en un directorio identificado por la variable de entorno CONFIGROOT, lo que devuelve la primera l\u00ednea del fichero en un mensaje de error."}], "id": "CVE-2006-3159", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-06-22T22:06:00.000", "references": [{"source": "cve@mitre.org", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/20919"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016312"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016416"}, {"source": "cve@mitre.org", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/18749"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/20919"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1016312"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1016416"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/18749"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}