Vulnerability Description
The console in AirMagnet Enterprise before 7.5 build 6307 does not properly validate the Enterprise Server certificate, which allows remote attackers to read network traffic via a man-in-the-middle (MITM) attack, possibly related to the use of self-signed certificates.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Airmagnet | Enterprise | 7.5 |
References
- http://secunia.com/advisories/22475
- http://www.osvdb.org/29921
- http://www.securityfocus.com/archive/1/449119/100/200/threaded
- http://www.securityfocus.com/archive/1/449739/100/100/threaded
- http://www.securityfocus.com/archive/1/451978/100/100/threaded
- http://www.securityfocus.com/bid/20602
- http://secunia.com/advisories/22475
- http://www.osvdb.org/29921
- http://www.securityfocus.com/archive/1/449119/100/200/threaded
- http://www.securityfocus.com/archive/1/449739/100/100/threaded
- http://www.securityfocus.com/archive/1/451978/100/100/threaded
- http://www.securityfocus.com/bid/20602
FAQ
What is CVE-2006-5746?
CVE-2006-5746 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The console in AirMagnet Enterprise before 7.5 build 6307 does not properly validate the Enterprise Server certificate, which allows remote attackers to read network traffic via a man-in-the-middle (M...
How severe is CVE-2006-5746?
CVE-2006-5746 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5746?
Check the references section above for vendor advisories and patch information. Affected products include: Airmagnet Enterprise.