CVE-2006-3159 - OpenCVE

pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:L/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Sun	Iplanet Messaging Server One Messaging Server

Configuration 1 [-]

OR	cpe:2.3:a:sun:iplanet_messaging_server:5.2:::::::*
	cpe:2.3:a:sun:one_messaging_server:5.2:::::::*

No data.

References

Link	Providers
http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html
http://secunia.com/advisories/20919
http://securitytracker.com/id?1016312
http://securitytracker.com/id?1016416
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1
http://www.securityfocus.com/bid/18749
http://www.vupen.com/english/advisories/2006/2633
https://exchange.xforce.ibmcloud.com/vulnerabilities/27220

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-06-22T22:00:00

Updated: 2024-08-07T18:16:05.946Z

Reserved: 2006-06-22T00:00:00

Link: CVE-2006-3159

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-06-22T22:06:00.000

Modified: 2017-07-20T01:32:05.820

Link: CVE-2006-3159

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-06-14T00:00:00", "descriptions": [{"lang": "en", "value": "pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1016416", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016416"}, {"name": "102496", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"name": "1016312", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016312"}, {"name": "iplanet-msgconf-symlink(27220)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"name": "ADV-2006-2633", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"name": "20060614 Sun iPlanet Messaging Server 5.2 root password compromise", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"name": "18749", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18749"}, {"name": "20919", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20919"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3159", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1016416", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016416"}, {"name": "102496", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"name": "1016312", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016312"}, {"name": "iplanet-msgconf-symlink(27220)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"name": "ADV-2006-2633", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"name": "20060614 Sun iPlanet Messaging Server 5.2 root password compromise", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"name": "18749", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18749"}, {"name": "20919", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20919"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:16:05.946Z"}, "title": "CVE Program Container", "references": [{"name": "1016416", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016416"}, {"name": "102496", "tags": ["vendor-advisory", "x_refsource_SUNALERT", "x_transferred"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"name": "1016312", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016312"}, {"name": "iplanet-msgconf-symlink(27220)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}, {"name": "ADV-2006-2633", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"name": "20060614 Sun iPlanet Messaging Server 5.2 root password compromise", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"name": "18749", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18749"}, {"name": "20919", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20919"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3159", "datePublished": "2006-06-22T22:00:00", "dateReserved": "2006-06-22T00:00:00", "dateUpdated": "2024-08-07T18:16:05.946Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sun:iplanet_messaging_server:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "6AB46EE9-8B54-4C14-8850-C7D5B6C62BBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:sun:one_messaging_server:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "8618D65B-CF77-46AF-8D2E-8D36DAAFFD34", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message."}, {"lang": "es", "value": "pipe_master de Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) permite a usuarios locales leer partes de archivos restringidos a trav\u00e9s de un ataque \"symlink\" (de enlace simb\u00f3licio) en msg.conf en un directorio identificado por la variable de entorno CONFIGROOT, lo que devuelve la primera l\u00ednea del fichero en un mensaje de error."}], "id": "CVE-2006-3159", "lastModified": "2017-07-20T01:32:05.820", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-06-22T22:06:00.000", "references": [{"source": "cve@mitre.org", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046920.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/20919"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016312"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016416"}, {"source": "cve@mitre.org", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102496-1"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/18749"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2633"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27220"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}