{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-08-23T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Cisco VPN 3000 series concentrators before 4.1, 4.1.x up to 4.1(7)L, and 4.7.x up to 4.7(2)F allow attackers to execute the (1) CWD, (2) MKD, (3) CDUP, (4) RNFR, (5) SIZE, and (6) RMD FTP commands to modify files or create and delete directories via unknown vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2006-3368", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/3368"}, {"name": "28138", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28138"}, {"name": "1016737", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016737"}, {"name": "19680", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19680"}, {"name": "28139", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28139"}, {"name": "cisco-vpn-ftp-command-execute(28539)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28539"}, {"name": "20060823 Cisco VPN 3000 Concentrator FTP Management Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml"}, {"name": "21617", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21617"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4313", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unspecified vulnerabilities in Cisco VPN 3000 series concentrators before 4.1, 4.1.x up to 4.1(7)L, and 4.7.x up to 4.7(2)F allow attackers to execute the (1) CWD, (2) MKD, (3) CDUP, (4) RNFR, (5) SIZE, and (6) RMD FTP commands to modify files or create and delete directories via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2006-3368", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/3368"}, {"name": "28138", "refsource": "OSVDB", "url": "http://www.osvdb.org/28138"}, {"name": "1016737", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016737"}, {"name": "19680", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19680"}, {"name": "28139", "refsource": "OSVDB", "url": "http://www.osvdb.org/28139"}, {"name": "cisco-vpn-ftp-command-execute(28539)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28539"}, {"name": "20060823 Cisco VPN 3000 Concentrator FTP Management Vulnerabilities", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml"}, {"name": "21617", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21617"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T19:06:07.596Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2006-3368", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/3368"}, {"name": "28138", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28138"}, {"name": "1016737", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016737"}, {"name": "19680", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19680"}, {"name": "28139", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28139"}, {"name": "cisco-vpn-ftp-command-execute(28539)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28539"}, {"name": "20060823 Cisco VPN 3000 Concentrator FTP Management Vulnerabilities", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml"}, {"name": "21617", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21617"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4313", "datePublished": "2006-08-23T22:00:00.000Z", "dateReserved": "2006-08-23T00:00:00.000Z", "dateUpdated": "2024-08-07T19:06:07.596Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "D953DA9F-B54E-4941-85BE-48933C98DB55", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "12E298AD-26AC-4E1D-83D8-5C2016CC6559", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.0.5.b:*:*:*:*:*:*:*", "matchCriteriaId": "B71DAF71-5763-44D8-AD1E-5ADE8BC15120", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.5.b:*:*:*:*:*:*:*", "matchCriteriaId": "BFA54782-93A8-47BE-863D-89CA3678BF6E", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.7.a:*:*:*:*:*:*:*", "matchCriteriaId": "67F66A10-246D-447B-941F-F1175684F0D6", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.7.b:*:*:*:*:*:*:*", "matchCriteriaId": "82435757-D892-4298-9176-5EC1FEC93037", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.1.7.l:*:*:*:*:*:*:*", "matchCriteriaId": "E5BAFC4A-D8FB-4450-BC29-83B306000C99", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7:*:*:*:*:*:*:*", "matchCriteriaId": "D03F5D3F-6FB1-4A25-B544-D3C973F35DD9", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "5A90348C-94E2-4F04-A887-E7EFFC1ACF12", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7.1.f:*:*:*:*:*:*:*", "matchCriteriaId": "1F5E136E-9215-46A8-A40A-AE964C588A38", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:vpn_3000_concentrator_series_software:4.7.2.f:*:*:*:*:*:*:*", "matchCriteriaId": "A13F7BC2-7491-4266-9B32-3E6D8978A6C7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Cisco VPN 3000 series concentrators before 4.1, 4.1.x up to 4.1(7)L, and 4.7.x up to 4.7(2)F allow attackers to execute the (1) CWD, (2) MKD, (3) CDUP, (4) RNFR, (5) SIZE, and (6) RMD FTP commands to modify files or create and delete directories via unknown vectors."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en los concentradores de la serie Cisco VPN 3000 anteriores a 4.1, 4.1.x hasta 4.1(7)L, y 4.7.x hasta 4.7(2)F permiten a atacantes ejecutar los comandos (1) CWD, (2) MKD, (3) CDUP, (4) RNFR, (5) SIZE, y (6) RMD FTP para modificar archivos o crear y borrar directorios a trav\u00e9s de vectores no especificados."}], "id": "CVE-2006-4313", "lastModified": "2026-04-16T00:27:16.627", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-08-23T22:04:00.000", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21617"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016737"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28138"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28139"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19680"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/3368"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28539"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21617"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1016737"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060823-vpn3k.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28138"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28139"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19680"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/3368"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28539"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}