CVE-2006-1506
CVE-2006-1506 is a high-severity vulnerability in Sun Grid Engine with a CVSS 2.0 base score of 7.2. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 2.0 base score 7.2)
- EPSS exploit prediction: 0% (31st percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Sun Grid Engine
- Published:
- Last modified:
Description
Unspecified vulnerability in rsh in Sun Microsystems Sun Grid Engine 5.3 before 20060327 and N1 Grid Engine 6.0 before 20060327 allows local users to gain root privileges.
Frequently asked questions
- What is CVE-2006-1506?
- Unspecified vulnerability in rsh in Sun Microsystems Sun Grid Engine 5.3 before 20060327 and N1 Grid Engine 6.0 before 20060327 allows local users to gain root privileges.
- How severe is CVE-2006-1506?
- CVE-2006-1506 has a CVSS 2.0 base score of 7.2, rated high severity.
- Is CVE-2006-1506 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (31st percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2006-1506?
- CVE-2006-1506 primarily affects Sun Grid Engine. In total, 2 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2006-1506?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2006-1506 published?
- CVE-2006-1506 was published on 2006-03-30 and last updated on 2026-06-16.
References
- http://securitytracker.com/id?1015835
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102268-1
- http://www.vupen.com/english/advisories/2006/1155
Affected products (2)
- cpe:2.3:a:sun:grid_engine:5.3:*:*:*:*:*:*:*
- cpe:2.3:a:sun:n1_grid_engine:6.0:*:*:*:*:*:*:*
More vulnerabilities in Sun Grid Engine
- CVE-2006-0408 — High (CVSS 7.2): rsh utility in Sun Grid Engine (SGE) before 6.0u7_1 allows local users to gain privileges and execute arbitrary code…
- CVE-2009-0046 — Medium (CVSS 5.0): Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function,…
- CVE-2006-2930 — Medium (CVSS 4.6): Unspecified vulnerability in Sun Grid Engine 5.3 and Sun N1 Grid Engine 6.0, when configured in Certificate Security…