OpenCVE

RSA Keon Certificate Authority (KeonCA) Manager 6.5.1 and 6.6 allows privileged local users to hide malicious Certificate Authority (CA) activities by modifying CA auditor logs without detection by (1) modifying or deleting a <LOG BLOCK> and its signature from the XML log in a way that is not detected by the integrity check function that operates on the entire pool, or (2) modifying entries in the live log file, which is only signed during rotation.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:L/AC:L/Au:N/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rsa	Keon Certificate Authority Manager

Configuration 1 [-]

OR	cpe:2.3:a:rsa:keon_certificate_authority_manager:6.5.1:::::::*
	cpe:2.3:a:rsa:keon_certificate_authority_manager:6.6:::::::*

No data.

References

Link	Providers
http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049592.html
http://www.securityfocus.com/archive/1/446742/100/0/threaded
http://www.securityfocus.com/bid/20136
https://exchange.xforce.ibmcloud.com/vulnerabilities/29065
https://exchange.xforce.ibmcloud.com/vulnerabilities/29068

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-09-26T01:43:00

Updated: 2024-08-07T19:32:22.839Z

Reserved: 2006-09-25T00:00:00

Link: CVE-2006-4991

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-09-26T02:07:00.000

Modified: 2024-11-21T00:17:25.387

Link: CVE-2006-4991

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-09-21T00:00:00", "descriptions": [{"lang": "en", "value": "RSA Keon Certificate Authority (KeonCA) Manager 6.5.1 and 6.6 allows privileged local users to hide malicious Certificate Authority (CA) activities by modifying CA auditor logs without detection by (1) modifying or deleting a <LOG BLOCK> and its signature from the XML log in a way that is not detected by the integrity check function that operates on the entire pool, or (2) modifying entries in the live log file, which is only signed during rotation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "rsa-keon-log-file-manipulation(29065)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29065"}, {"name": "20060921 RSA Keyon Log verification bypass vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049592.html"}, {"name": "20060921 RSA Keyon Log verification bypass vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/446742/100/0/threaded"}, {"name": "rsa-keon-logserver-file-manipulation(29068)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29068"}, {"name": "20136", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20136"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4991", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "RSA Keon Certificate Authority (KeonCA) Manager 6.5.1 and 6.6 allows privileged local users to hide malicious Certificate Authority (CA) activities by modifying CA auditor logs without detection by (1) modifying or deleting a <LOG BLOCK> and its signature from the XML log in a way that is not detected by the integrity check function that operates on the entire pool, or (2) modifying entries in the live log file, which is only signed during rotation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "rsa-keon-log-file-manipulation(29065)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29065"}, {"name": "20060921 RSA Keyon Log verification bypass vulnerability", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049592.html"}, {"name": "20060921 RSA Keyon Log verification bypass vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/446742/100/0/threaded"}, {"name": "rsa-keon-logserver-file-manipulation(29068)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29068"}, {"name": "20136", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20136"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T19:32:22.839Z"}, "title": "CVE Program Container", "references": [{"name": "rsa-keon-log-file-manipulation(29065)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29065"}, {"name": "20060921 RSA Keyon Log verification bypass vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049592.html"}, {"name": "20060921 RSA Keyon Log verification bypass vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/446742/100/0/threaded"}, {"name": "rsa-keon-logserver-file-manipulation(29068)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29068"}, {"name": "20136", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/20136"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4991", "datePublished": "2006-09-26T01:43:00", "dateReserved": "2006-09-25T00:00:00", "dateUpdated": "2024-08-07T19:32:22.839Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rsa:keon_certificate_authority_manager:6.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "ADDB62CF-F83E-4B57-AE5A-210D46E5FFE1", "vulnerable": true}, {"criteria": "cpe:2.3:a:rsa:keon_certificate_authority_manager:6.6:*:*:*:*:*:*:*", "matchCriteriaId": "822111CD-A016-4749-9FB8-25A534D12FCE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "RSA Keon Certificate Authority (KeonCA) Manager 6.5.1 and 6.6 allows privileged local users to hide malicious Certificate Authority (CA) activities by modifying CA auditor logs without detection by (1) modifying or deleting a <LOG BLOCK> and its signature from the XML log in a way that is not detected by the integrity check function that operates on the entire pool, or (2) modifying entries in the live log file, which is only signed during rotation."}, {"lang": "es", "value": "RSA Keon Certificate Authority (KeonCA) Manager 6.5.1 y 6.6 permite que los usuarios locales privilegiados ocultar actividades mal\u00e9volas del Certificate Authority (CA) modificando los registros del interventor del CA sin su detecci\u00f3n por (1) modificaci\u00f3n o supresi\u00f3n de <LOG BLOCK> y su firma del registro XML abre una sesi\u00f3n de manera que no sea detectada por la funci\u00f3n de chequeo de integridad que funciona sobre toda el fondo, o (2) entradas de modificaci\u00f3n en el fichero de registro directo, que se firma solamente durante la rotaci\u00f3n."}], "id": "CVE-2006-4991", "lastModified": "2024-11-21T00:17:25.387", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-09-26T02:07:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049592.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/446742/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/20136"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29065"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29068"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049592.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/446742/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/20136"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29065"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29068"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}