Vulnerability Details : CVE-2006-1182
Adobe Graphics Server 2.0 and 2.1 (formerly AlterCast) and Adobe Document Server (ADS) 5.0 and 6.0 allows local users to read files with certain extensions or overwrite arbitrary files and execute code via a crafted SOAP request to the AlterCast web service in which the request uses the (1) saveContent or (2) saveOptimized ADS commands, or the (3) loadContent command.
Vulnerability category: Execute code
Exploit prediction scoring system (EPSS) score for CVE-2006-1182
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 8 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2006-1182
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
2.6
|
LOW | AV:L/AC:H/Au:N/C:P/I:P/A:N |
1.9
|
4.9
|
NIST |
References for CVE-2006-1182
-
http://securitytracker.com/id?1015769
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/17113
Patch
-
http://securitytracker.com/id?1015768
-
http://www.securityfocus.com/archive/1/427730/100/0/threaded
-
http://www.vupen.com/english/advisories/2006/0956
-
http://securityreason.com/securityalert/588
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/25247
-
http://www.adobe.com/support/techdocs/332989.html
Patch
Products affected by CVE-2006-1182
- cpe:2.3:a:adobe:document_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:document_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:graphics_server:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:graphics_server:2.0:*:*:*:*:*:*:*