Lucene search

K

[email protected]NVD:CVE-2007-3717

HistoryJul 12, 2007 - 4:30 p.m.

CVE-2007-3717

2007-07-1216:30:00

[email protected]

web.nvd.nist.gov

4

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

49.2%

rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225.

Affected configurations

Nvd

Node

sunsunosMatch5.8

OR

sunsunosMatch5.9

OR

sunsunosMatch5.10

VendorProductVersionCPE
sunsunos5.8cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
sunsunos5.9cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*
sunsunos5.10cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*

References

osvdb.org/36611

secunia.com/advisories/26024

secunia.com/advisories/26210

sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1

support.avaya.com/elmodocs2/security/ASA-2007-319.htm

www.vupen.com/english/advisories/2007/2494

exchange.xforce.ibmcloud.com/vulnerabilities/35334

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

49.2%

Related for NVD:CVE-2007-3717

prion3 cvelist3 cve3 openvas28 nessus27 ubuntu1 suse1 redhat3 gentoo1 slackware1 seebug1 centos3 debiancve2 nvd2 ubuntucve2 f52 osv1