Vulnerability Details : CVE-2006-4232
Race condition in the grid-proxy-init tool in Globus Toolkit 3.2.x, 4.0.x, and 4.1.0 before 20060815 allows local users to steal credential data by replacing the proxy credentials file in between file creation and the check for exclusive file access.
Products affected by CVE-2006-4232
- cpe:2.3:a:globus:globus_toolkit:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:globus:globus_toolkit:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:globus:globus_toolkit:3.2.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-4232
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-4232
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
1.2
|
LOW | AV:L/AC:H/Au:N/C:P/I:N/A:N |
1.9
|
2.9
|
NIST |
References for CVE-2006-4232
Jump to