Lucene search
HistoryJul 10, 2007 - 12:30 a.m.
CVE-2007-3635
CVSS2
4.3
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.158
Percentile
96.1%
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2.1 for Squirrelmail might allow βlocal authenticated usersβ to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.
Affected configurations
Node
squirrelmailgpg_pluginMatch2.0
ORsquirrelmailsquirrelmailMatch1.4.10a
| Vendor | Product | Version | CPE |
|---|---|---|---|
| squirrelmail | gpg_plugin | 2.0 | cpe:2.3:a:squirrelmail:gpg_plugin:2.0:*:*:*:*:*:*:* |
| squirrelmail | squirrelmail | 1.4.10a | cpe:2.3:a:squirrelmail:squirrelmail:1.4.10a:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2007-07-10 00:30:00
Information disclosure
2007-07-10 00:30:00
cve
cve
cvelist
cvelist
redhatcve
redhatcve
CVE-2007-3635
2015-10-30 09:43:50
CVE-2007-3634
2015-10-30 09:43:45
openvas
openvas
Gentoo Security Advisory GLSA 200708-08 (squirrelmail)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200708-08 (squirrelmail)
2008-09-24 00:00:00
nessus
nessus
GLSA-200708-08 : SquirrelMail G/PGP plugin: Arbitrary code execution
2007-08-13 00:00:00
gentoo
gentoo
SquirrelMail G/PGP plugin: Arbitrary code execution
2007-08-11 00:00:00
seebug
seebug
SquirrelMail G/PGPε ε―ζδ»Άε€δΈͺθΏη¨ε½δ»€ζ§θ‘ζΌζ΄
2007-07-18 00:00:00
nvd
nvd
exploitdb
exploitdb
SquirrelMail G/PGP Encryption Plugin 2.0 - Command Execution
2007-07-11 00:00:00
securityvulns
securityvulns
CVSS2
4.3
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.158
Percentile
96.1%
Related for NVD:CVE-2007-3635