Lucene search

[email protected]NVD:CVE-2007-0625

HistoryJan 31, 2007 - 6:28 p.m.

CVE-2007-0625

2007-01-3118:28:00

[email protected]

web.nvd.nist.gov

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

25.7%

JSON

nxconfigure.sh in NoMachine NX Server before 2.1.0-18 does not validate the invoking user, which allows local users to modify server configuration keys in /usr/NX/etc/server.cfg, resulting in an unspecified denial of service.

Affected configurations

Nvd

Node

nomachinenx_serverRange≤2.1.0_17

VendorProductVersionCPE
nomachinenx_server*cpe:2.3:a:nomachine:nx_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nomachine	nx_server	*	cpe:2.3:a:nomachine:nx_server::::::::

References

osvdb.org/33009

secunia.com/advisories/23993

www.nomachine.com/news_read.php?idnews=190

www.nomachine.com/tr/view.php?id=TR01E01622

www.securityfocus.com/bid/22308

www.vupen.com/english/advisories/2007/0413

exchange.xforce.ibmcloud.com/vulnerabilities/31941

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

25.7%

JSON

Related for NVD:CVE-2007-0625

cve1 cvelist1 securityvulns1 prion1