CVE-2006-4184

medium

Description

SmartLine DeviceLock before 5.73 Build 305 does not properly enforce access control lists (ACL) in raw mode, which allows local users to bypass NTFS controls and obtain sensitive information.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/28384

http://www.securityfocus.com/bid/19500

http://www.securityfocus.com/archive/1/443193/100/0/threaded

http://www.protect-me.com/dl/whatsnew.html

http://securityreason.com/securityalert/1392

http://secunia.com/advisories/21494

Details

Source: Mitre, NVD

Published: 2006-08-17

Updated: 2026-04-16

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N