Lucene search

[email protected]CVE-2007-4062

HistoryJul 30, 2007 - 5:30 p.m.

CVE-2007-4062

2007-07-3017:30:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2007-4062

nessus vulnerability scanner

activex control

directory traversal vulnerability

nvd

7 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:P/A:C

0.003 Low

EPSS

Percentile

68.2%

JSON

The SCANCTRL.ScanCtrlCtrl.1 ActiveX control in scan.dll in Nessus Vulnerability Scanner 3.0.6 allows remote attackers to delete arbitrary files via unspecified vectors involving the deleteNessusRC method, probably a directory traversal vulnerability.

CPENameOperatorVersion
nessus:vulnerability_scannernessus vulnerability scannereq3.0.6

CPE	Name	Operator	Version
nessus:vulnerability_scanner	nessus vulnerability scanner	eq	3.0.6

References

secunia.com/advisories/26243

www.nessus.org/news/

www.securityfocus.com/bid/25088

exchange.xforce.ibmcloud.com/vulnerabilities/35641

7 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:P/A:C

0.003 Low

EPSS

Percentile

68.2%

JSON

Related for CVE-2007-4062

prion1 nessus1