Vulnerabilities > CVE-2006-6131 - Unspecified vulnerability in Kerio Webstar
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Untrusted search path vulnerability in (1) WSAdminServer and (2) WSWebServer in Kerio WebSTAR (4D WebSTAR Server Suite) 5.4.2 and earlier allows local users with webstar privileges to gain root privileges via a malicious libucache.dylib helper library in the current working directory.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 15 |
References
- http://secunia.com/advisories/22906
- http://secunia.com/advisories/22906
- http://securityreason.com/securityalert/1921
- http://securityreason.com/securityalert/1921
- http://securitytracker.com/id?1017239
- http://securitytracker.com/id?1017239
- http://www.digitalmunition.com/DMA%5B2006-1115a%5D.txt
- http://www.digitalmunition.com/DMA%5B2006-1115a%5D.txt
- http://www.osvdb.org/30450
- http://www.osvdb.org/30450
- http://www.securityfocus.com/archive/1/451832/100/200/threaded
- http://www.securityfocus.com/archive/1/451832/100/200/threaded
- http://www.securityfocus.com/bid/21123
- http://www.securityfocus.com/bid/21123
- http://www.vupen.com/english/advisories/2006/4539
- http://www.vupen.com/english/advisories/2006/4539
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30308
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30308