Lucene search

[email protected]CVE-2007-0579

HistoryJan 30, 2007 - 5:28 p.m.

CVE-2007-0579

2007-01-3017:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0579

calendar component

horde groupware webmail

vulnerability

remote attackers

file inclusion

6.9 Medium

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.043 Low

EPSS

Percentile

92.2%

JSON

Unspecified vulnerability in the calendar component in Horde Groupware Webmail Edition before 1.0, and Groupware before 1.0, allows remote attackers to include certain files via unspecified vectors. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
horde:groupwarehorde groupwareeq1.0_rc3
horde:groupwarehorde groupwareeq1.0_rc2

CPE	Name	Operator	Version
horde:groupware	horde groupware	eq	1.0_rc3
horde:groupware	horde groupware	eq	1.0_rc2

References

lists.horde.org/archives/announce/2007/000308.html

lists.horde.org/archives/announce/2007/000309.html

osvdb.org/33083

www.securityfocus.com/bid/22273

www.vupen.com/english/advisories/2007/0368

exchange.xforce.ibmcloud.com/vulnerabilities/31849

6.9 Medium

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.043 Low

EPSS

Percentile

92.2%

JSON

Related for CVE-2007-0579

prion1 securityvulns1