Home > Vulnerability Database > CVE-2006-3694

Mend.io Vulnerability Database

CVE-2006-3694

Date: July 18, 2006

Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow remote attackers to bypass "safe level" checks via unspecified vectors involving (1) the alias function and (2) "directory operations".

Severity Score

6.5

Related Resources (28)

Url: http://www.debian.org/security/2006/dsa-1157

Url: http://www.vupen.com/english/advisories/2006/2760

Url: ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-3694

Url: http://www.debian.org/security/2006/dsa-1139

Url: http://secunia.com/advisories/21598

Url: http://www.osvdb.org/27144

Url: http://www.osvdb.org/27145

Url: http://secunia.com/advisories/21236

Url: http://secunia.com/advisories/21657

Url: http://secunia.com/advisories/21337

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:134

Url: http://secunia.com/advisories/21272

Url: http://jvn.jp/jp/JVN%2313947696/index.html

Url: http://www.novell.com/linux/security/advisories/2006_21_sr.html

Url: http://jvn.jp/jp/JVN%2383768862/index.html

Url: http://secunia.com/advisories/21233

Url: http://www.redhat.com/support/errata/RHSA-2006-0604.html

Url: http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003915.html

Url: http://secunia.com/advisories/21749

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/27725

Url: http://www.ubuntu.com/usn/usn-325-1

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9983

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-3694

Url: http://secunia.com/advisories/21009

Url: http://lists.freebsd.org/pipermail/freebsd-security/2006-July/003907.html

Url: http://www.securityfocus.com/bid/18944

Url: https://www.mend.io/vulnerability-database/CVE-2006-3694

Severity Score

6.5

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	NONE

CVSS v2

Base Score:	6.4
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2006-3694

Date: July 18, 2006

Severity Score

Related Resources (28)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?