Lucene search

[email protected]CVE-2007-3717

HistoryJul 12, 2007 - 4:30 p.m.

CVE-2007-3717

2007-07-1216:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-3717

privilege escalation

rcp

sun solaris

nvd

9 High

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

12.3%

JSON

rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225.

CPENameOperatorVersion
sun:sunossun sunoseq5.8
sun:sunossun sunoseq5.10
sun:sunossun sunoseq5.9

CPE	Name	Operator	Version
sun:sunos	sun sunos	eq	5.8
sun:sunos	sun sunos	eq	5.10
sun:sunos	sun sunos	eq	5.9

References

osvdb.org/36611

secunia.com/advisories/26024

secunia.com/advisories/26210

sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1

support.avaya.com/elmodocs2/security/ASA-2007-319.htm

www.vupen.com/english/advisories/2007/2494

exchange.xforce.ibmcloud.com/vulnerabilities/35334

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772

9 High

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

12.3%

JSON

Related for CVE-2007-3717

prion3 nessus27 openvas26 cve2 ubuntu1 seebug1 debiancve2 ubuntucve2 centos3 redhat3 suse1 gentoo1 slackware1 f52