CVE-2006-3825 : The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routi

The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication.

Published 2006-07-25 13:22:00

Updated 2017-07-20 01:32:37

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2006-3825

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 11 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2006-3825

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:P/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2006-3825

http://www.vupen.com/english/advisories/2006/2937
http://www.securityfocus.com/bid/19108

Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102509-1

Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/27935

Products affected by CVE-2006-3825

SUN » Solaris » Version: 10.0 Sparc Edition
cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2006-3825

Exploit prediction scoring system (EPSS) score for CVE-2006-3825

CVSS scores for CVE-2006-3825

References for CVE-2006-3825

Products affected by CVE-2006-3825