CVE-2006-1829

high

Description

EAServer Manager in Sybase EAServer 5.2 and 5.3 allows remote authenticated users, possibly guests, to obtain password credentials of arbitrary users via unspecified vectors involving (1) connection caches, (2) open password prompts, and (3) stored custom connection profiles.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25777

http://www.vupen.com/english/advisories/2006/1344

http://www.sybase.com/detail?id=1040117

http://www.securityfocus.com/bid/17508

http://securitytracker.com/id?1015913

http://secunia.com/advisories/19605

Details

Source: Mitre, NVD

Published: 2006-04-19

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00404