CVE-2006-0485 : Detail

CVE-2006-0485

0.14%V4
Local
2006-02-01
01h00 +00:00
2017-10-09
22h57 +00:00
CVE.org
NVD
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

The TCL shell in Cisco IOS 12.2(14)S before 12.2(14)S16, 12.2(18)S before 12.2(18)S11, and certain other releases before 25 January 2006 does not perform Authentication, Authorization, and Accounting (AAA) command authorization checks, which may allow local users to execute IOS EXEC commands that were prohibited via the AAA configuration, aka Bug ID CSCeh73049.

CVE Informations

Metrics

Metrics Score Severity CVSS Vector Source
V2 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P nvd@nist.gov

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
EPSS First.org

Products Mentioned

Configuraton 0

Cisco>>Ios >> Version 12.0t

Cisco>>Ios >> Version 12.0xh

Cisco>>Ios >> Version 12.0xk

Cisco>>Ios >> Version 12.0xl

Cisco>>Ios >> Version 12.0xn

Cisco>>Ios >> Version 12.0xr

Cisco>>Ios >> Version 12.1

Cisco>>Ios >> Version 12.1aa

Cisco>>Ios >> Version 12.1e

Cisco>>Ios >> Version 12.1ec

Cisco>>Ios >> Version 12.1ez

Cisco>>Ios >> Version 12.1ga

Cisco>>Ios >> Version 12.1gb

Cisco>>Ios >> Version 12.1t

Cisco>>Ios >> Version 12.1xa

Cisco>>Ios >> Version 12.1xe

Cisco>>Ios >> Version 12.1xh

Cisco>>Ios >> Version 12.1xi

Cisco>>Ios >> Version 12.1xj

Cisco>>Ios >> Version 12.1xl

Cisco>>Ios >> Version 12.1xm

Cisco>>Ios >> Version 12.1xp

Cisco>>Ios >> Version 12.1xq

Cisco>>Ios >> Version 12.1xs

Cisco>>Ios >> Version 12.1xt

Cisco>>Ios >> Version 12.1xu

Cisco>>Ios >> Version 12.1xv

Cisco>>Ios >> Version 12.1xw

Cisco>>Ios >> Version 12.1xy

Cisco>>Ios >> Version 12.1xz

Cisco>>Ios >> Version 12.1ya

Cisco>>Ios >> Version 12.1yb

Cisco>>Ios >> Version 12.1yd

Cisco>>Ios >> Version 12.1ye

Cisco>>Ios >> Version 12.1yf

Cisco>>Ios >> Version 12.1yh

Cisco>>Ios >> Version 12.1yi

Cisco>>Ios >> Version 12.2

Cisco>>Ios >> Version 12.2b

Cisco>>Ios >> Version 12.2bw

Cisco>>Ios >> Version 12.2by

Cisco>>Ios >> Version 12.2dd

Cisco>>Ios >> Version 12.2dx

Cisco>>Ios >> Version 12.2mx

Cisco>>Ios >> Version 12.2n

Cisco>>Ios >> Version 12.2s

Cisco>>Ios >> Version 12.2su

Cisco>>Ios >> Version 12.2sw

Cisco>>Ios >> Version 12.2sxb

Cisco>>Ios >> Version 12.2sxd

Cisco>>Ios >> Version 12.2sxe

Cisco>>Ios >> Version 12.2sz

Cisco>>Ios >> Version 12.2xa

Cisco>>Ios >> Version 12.2xb

Cisco>>Ios >> Version 12.2xc

Cisco>>Ios >> Version 12.2xd

Cisco>>Ios >> Version 12.2xg

Cisco>>Ios >> Version 12.2xh

Cisco>>Ios >> Version 12.2xj

Cisco>>Ios >> Version 12.2xk

Cisco>>Ios >> Version 12.2xl

Cisco>>Ios >> Version 12.2xm

Cisco>>Ios >> Version 12.2xq

Cisco>>Ios >> Version 12.2xs

Cisco>>Ios >> Version 12.2xt

Cisco>>Ios >> Version 12.2xu

Cisco>>Ios >> Version 12.2xv

Cisco>>Ios >> Version 12.2xw

Cisco>>Ios >> Version 12.2yb

Cisco>>Ios >> Version 12.2yc

Cisco>>Ios >> Version 12.2yd

Cisco>>Ios >> Version 12.2ye

Cisco>>Ios >> Version 12.2yh

Cisco>>Ios >> Version 12.2yk

Cisco>>Ios >> Version 12.2yl

Cisco>>Ios >> Version 12.2ym

Cisco>>Ios >> Version 12.2yn

Cisco>>Ios >> Version 12.2yt

Cisco>>Ios >> Version 12.2yu

Cisco>>Ios >> Version 12.2yw

Cisco>>Ios >> Version 12.2yx

Cisco>>Ios >> Version 12.2yy

Cisco>>Ios >> Version 12.2yz

Cisco>>Ios >> Version 12.2zb

Cisco>>Ios >> Version 12.2zc

Cisco>>Ios >> Version 12.2zd

Cisco>>Ios >> Version 12.2ze

Cisco>>Ios >> Version 12.2zf

Cisco>>Ios >> Version 12.2zh

Cisco>>Ios >> Version 12.2zj

Cisco>>Ios >> Version 12.2zl

Cisco>>Ios >> Version 12.2zn

Cisco>>Ios >> Version 12.2zp

Cisco>>Ios >> Version 12.3

Cisco>>Ios >> Version 12.3\(11\)yk2

Cisco>>Ios >> Version 12.3\(11\)yl

Cisco>>Ios >> Version 12.3b

Cisco>>Ios >> Version 12.3t

Cisco>>Ios >> Version 12.3xa

Cisco>>Ios >> Version 12.3xb

Cisco>>Ios >> Version 12.3xd

Cisco>>Ios >> Version 12.3xe

Cisco>>Ios >> Version 12.3xf

Cisco>>Ios >> Version 12.3xg

Cisco>>Ios >> Version 12.3xh

Cisco>>Ios >> Version 12.3xi

Cisco>>Ios >> Version 12.3xj

Cisco>>Ios >> Version 12.3xk

Cisco>>Ios >> Version 12.3xm

Cisco>>Ios >> Version 12.3xq

Cisco>>Ios >> Version 12.3xr

Cisco>>Ios >> Version 12.3xw

Cisco>>Ios >> Version 12.3xy

Cisco>>Ios >> Version 12.3ya

Cisco>>Ios >> Version 12.3yb

Cisco>>Ios >> Version 12.3yf

Cisco>>Ios >> Version 12.3yg

Cisco>>Ios >> Version 12.3yh

Cisco>>Ios >> Version 12.3yi

Cisco>>Ios >> Version 12.3yj

Cisco>>Ios >> Version 12.3yk

Cisco>>Ios >> Version 12.3ym

Cisco>>Ios >> Version 12.3yq

Cisco>>Ios >> Version 12.3ys

Cisco>>Ios >> Version 12.3yt

Cisco>>Ios >> Version 12.3yu

Cisco>>Ios >> Version 12.3yx

Cisco>>Ios >> Version 12.4

Cisco>>Ios >> Version 12.4mr

Cisco>>Ios >> Version 12.4t

References

http://securitytracker.com/id?1015543
Tags : vdb-entry, x_refsource_SECTRACK
http://www.osvdb.org/34892
Tags : vdb-entry, x_refsource_OSVDB
http://secunia.com/advisories/18613
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2006/0337
Tags : vdb-entry, x_refsource_VUPEN
http://www.securityfocus.com/bid/16383
Tags : vdb-entry, x_refsource_BID
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.