Lucene search

[email protected]CVE-2007-5926

HistoryNov 10, 2007 - 2:46 a.m.

CVE-2007-5926

2007-11-1002:46:00

CWE-20

[email protected]

web.nvd.nist.gov

openbase

cve-2007-5926

security

remote access

authentication

stored procedures

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.7%

JSON

OpenBase 10.0.5 and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup, (2) OEMLicenseInstall, and possibly other stored procedures.

Affected configurations

NVD

Node

openbase_international_ltdopenbaseRange≤10.0.5

CPENameOperatorVersion
openbase_international_ltd:openbaseopenbase international ltd openbasele10.0.5

CPE	Name	Operator	Version
openbase_international_ltd:openbase	openbase international ltd openbase	le	10.0.5

References

secunia.com/advisories/27525

www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt

www.securityfocus.com/bid/26347

exchange.xforce.ibmcloud.com/vulnerabilities/38291

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.7%

JSON

Related for CVE-2007-5926

prion2 cvelist2 nvd2 cve1