Vulnerability Description
Adobe LiveCycle Workflow 7.01 and LiveCycle Forum Manager 7.01 allows users to authenticate and perform privileged actions when their account is marked "OBSOLETE" but the account is also active, within the authentication system.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Livecycle Form Manager | 7.01 |
References
- http://secunia.com/advisories/19620PatchVendor Advisory
- http://securitytracker.com/id?1015906
- http://www.adobe.com/support/techdocs/333036.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/17511
- http://www.vupen.com/english/advisories/2006/1343
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25779
- http://secunia.com/advisories/19620PatchVendor Advisory
- http://securitytracker.com/id?1015906
- http://www.adobe.com/support/techdocs/333036.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/17511
- http://www.vupen.com/english/advisories/2006/1343
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25779
FAQ
What is CVE-2006-1628?
CVE-2006-1628 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Adobe LiveCycle Workflow 7.01 and LiveCycle Forum Manager 7.01 allows users to authenticate and perform privileged actions when their account is marked "OBSOLETE" but the account is also active, withi...
How severe is CVE-2006-1628?
CVE-2006-1628 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1628?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Livecycle Form Manager.