Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5926

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2007-5926
Last Modified 05 Sep 2008 12:00:00
Published 09 Nov 2007 09:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2007-5926

Summary

OpenBase 10.0.5 and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to the (1) AsciiBackup, (2) OEMLicenseInstall, and possibly other stored procedures.

Vulnerable Systems

Application

  • Openbase International Ltd Openbase 10.0.5


References

XF - openbase-stored-command-execution(38291)

BID - 26347

MISC - http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt

SECUNIA - 27525


Last Updated: 27 May 2016 10:46:19