Vulnerabilities > CVE-2006-4506 - Unspecified vulnerability in Netiq Identity Manager 3.0.1

CVSS 3.6 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

netiq

NVD

Published: 2006-08-31

Updated: 2018-09-27

Summary

idmlib.sh in nxdrv in Novell Identity Manager (IDM) 3.0.1 allows local users to execute arbitrary commands via unspecified vectors, possibly involving the " (quote) and \ (backslash) characters and eval injection. The vendor has released a patch to address this issue.

Vulnerable Configurations

Part	Description	Count
Application	Netiq Netiq Identity Manager 3.0.1	1

References

http://securitytracker.com/id?1016741
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974299.htm
http://www.securityfocus.com/bid/19688