Lucene search

PRIOn knowledge basePRION:CVE-2007-4427

HistoryAug 20, 2007 - 7:17 p.m.

Code injection

2007-08-2019:17:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

48.6%

JSON

Unspecified vulnerability in the login page redirection logic in the Cache’ Server Page (CSP) implementation in InterSystems Cache’ 2007.1.0.369.0 and 2007.1.1.420.0 allows remote authenticated users to modify data on a server, related to encoding of certain parameter values by this redirection logic, aka MAK2116.

CPENameOperatorVersion
cache_databaseeq2007.1.1.420.0
cache_databaseeq2007.1.0.369.0

CPE	Name	Operator	Version
	cache_database	eq	2007.1.1.420.0
	cache_database	eq	2007.1.0.369.0

References

osvdb.org/40178

secunia.com/advisories/26541

www.intersystems.com/support/cflash/2007announce.html

groups.google.com/group/intersystems-public-cache/browse_thread/thread/57d7c80dde26fda3/7845e246da5b095b

6.7 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

48.6%

JSON

Related for PRION:CVE-2007-4427

cve1