exploitDog

CVE-2007-5926

Опубликовано: 10 нояб. 2007

Источник: nvd

CVSS2: 9

EPSS Низкий

Описание

OpenBase 10.0.5 and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup, (2) OEMLicenseInstall, and possibly other stored procedures.

Ссылки

http://secunia.com/advisories/27525
Vendor Advisory
http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt
Exploit
http://www.securityfocus.com/bid/26347
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/38291
http://secunia.com/advisories/27525
Vendor Advisory
http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt
Exploit
http://www.securityfocus.com/bid/26347
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/38291

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:openbase_international_ltd:openbase:*:*:*:*:*:*:*:*

Версия до 10.0.5 (включая)

EPSS

Процентиль: 89%

0.04579

Низкий

9 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-qv7p-rw6j-rmc4

github

почти 4 года назад

OpenBase 10.0.5 and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup, (2) OEMLicenseInstall, and possibly other stored procedures.

EPSS

Процентиль: 89%

0.04579

Низкий

9 Critical

CVSS2

Дефекты

CWE-20