ID OSVDB:35540
Type osvdb
Reporter OSVDB
Modified 2007-05-03T07:48:55
Description
Solution Description
Upgrade to version 4.6.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
References:
Secunia Advisory ID:25039
Related OSVDB ID: 35539
CVE-2007-2557
{"href": "https://vulners.com/osvdb/OSVDB:35540", "id": "OSVDB:35540", "reporter": "OSVDB", "published": "2007-05-03T07:48:55", "description": "## Solution Description\nUpgrade to version 4.6.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\n[Secunia Advisory ID:25039](https://secuniaresearch.flexerasoftware.com/advisories/25039/)\n[Related OSVDB ID: 35539](https://vulners.com/osvdb/OSVDB:35539)\n[CVE-2007-2557](https://vulners.com/cve/CVE-2007-2557)\n", "title": "Mambo MOStlyDB Admin Unspecified Remote Privilege Escalation", "lastseen": "2017-04-28T13:20:31", "bulletinFamily": "software", "type": "osvdb", "cvss": {"score": 4.0, "vector": "AV:NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:PARTIAL/I:NONE/A:NONE/"}, "references": [], "edition": 1, "cvelist": ["CVE-2007-2557"], "affectedSoftware": [], "viewCount": 0, "enchantments": {"score": {"value": 5.8, "vector": "NONE", "modified": "2017-04-28T13:20:31", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-2557"]}], "modified": "2017-04-28T13:20:31", "rev": 2}, "vulnersScore": 5.8}, "modified": "2007-05-03T07:48:55"}
{"cve": [{"lastseen": "2020-10-03T11:45:51", "description": "MOStlyDB Admin in Mambo 4.6.1 does not properly check privileges, which allows remote authenticated administrators to have an unknown impact via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.", "edition": 3, "cvss3": {}, "published": "2007-05-09T18:19:00", "title": "CVE-2007-2557", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 4.0, "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2007-2557"], "modified": "2008-11-15T06:49:00", "cpe": ["cpe:/a:mambo:mambo:4.6.1"], "id": "CVE-2007-2557", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-2557", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "cpe23": ["cpe:2.3:a:mambo:mambo:4.6.1:*:*:*:*:*:*:*"]}]}
