Lucene search

[email protected]CVE-2007-5616

HistoryJan 09, 2008 - 9:46 p.m.

CVE-2007-5616

2008-01-0921:46:00

[email protected]

web.nvd.nist.gov

cve-2007-5616

ssh tectia

privilege escalation

unix

linux

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

ssh-signer in SSH Tectia Client and Server 5.x before 5.2.4, and 5.3.x before 5.3.6, on Unix and Linux allows local users to gain privileges via unspecified vectors.

Affected configurations

NVD

Node

sshtectia_clientRange5.0.0–5.2.4

sshtectia_clientRange5.3.0–5.3.6

sshtectia_serverRange5.0–5.2.4

sshtectia_serverRange5.3.0–5.3.6

AND

linuxlinux_kernelMatch-

opengroupunixMatch-

CPENameOperatorVersion
ssh:tectia_clientssh tectia clientlt5.2.4
ssh:tectia_clientssh tectia clientlt5.3.6
ssh:tectia_serverssh tectia serverlt5.2.4
ssh:tectia_serverssh tectia serverlt5.3.6

CPE	Name	Operator	Version
ssh:tectia_client	ssh tectia client	lt	5.2.4
ssh:tectia_client	ssh tectia client	lt	5.3.6
ssh:tectia_server	ssh tectia server	lt	5.2.4
ssh:tectia_server	ssh tectia server	lt	5.3.6

References

secunia.com/advisories/28247

securitytracker.com/id?1019167

www.kb.cert.org/vuls/id/921339

www.kb.cert.org/vuls/id/WDON-7AMRRF

www.securityfocus.com/bid/27191

www.vupen.com/english/advisories/2008/0078

exchange.xforce.ibmcloud.com/vulnerabilities/39569

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2007-5616

cvelist1 prion1 nvd1 cert1