CVE-2007-0627

Опубликовано: 31 янв. 2007

Источник: nvd

CVSS2: 4.9

EPSS Низкий

Описание

Michael Still gtalkbot before 1.2 places username and password arguments on the command line, which allows local users to obtain sensitive information by listing the process.

Ссылки

http://freshmeat.net/projects/gtalkbot/?branch_id=67830&release_id=245004
http://osvdb.org/33071
http://secunia.com/advisories/23942
http://www.securityfocus.com/bid/22322
http://www.stillhq.com/gtalkbot/
http://www.stillhq.com/gtalkbot/000003.html
http://www.vupen.com/english/advisories/2007/0408
https://exchange.xforce.ibmcloud.com/vulnerabilities/31923
http://freshmeat.net/projects/gtalkbot/?branch_id=67830&release_id=245004
http://osvdb.org/33071
http://secunia.com/advisories/23942
http://www.securityfocus.com/bid/22322
http://www.stillhq.com/gtalkbot/
http://www.stillhq.com/gtalkbot/000003.html
http://www.vupen.com/english/advisories/2007/0408
https://exchange.xforce.ibmcloud.com/vulnerabilities/31923

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:michael_still:gtalkbot:*:*:*:*:*:*:*:*

Версия до 1.1 (включая)

EPSS

Процентиль: 24%

0.00079

Низкий

4.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5rqf-f3pf-3555

github

почти 4 года назад