CVE-2006-1788

3 documents3 sources

Severity

2.6LOW

EPSS

2.1%

top 15.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Document Server

Timeline

PublishedApr 13

Latest updateMay 1

Description

Adobe Document Server for Reader Extensions 6.0, during log on, provides different error messages depending on whether the user ID is valid or invalid, which allows remote attackers to more easily identify valid user IDs via brute force attacks.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

▶NVDadobe/document_server6.0

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-4v5g-qj5x-c7jp: Adobe Document Server for Reader Extensions 6↗2022-05-01

▶

CVEList

CVE-2006-1788: Adobe Document Server for Reader Extensions 6↗2006-04-13

▶