Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6174

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2007-6174
Last Modified 05 Sep 2008 05:32:33
Published 29 Nov 2007 07:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2007-6174

Summary

PHPDevShell before 0.7.0 allows remote authenticated users to gain privileges via a crafted request to update a user profile. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Phpdevshell 0.6.0


References

SECUNIA - 27828

MISC - http://www.phpdevshell.org/changelog

XF - phpdevshell-profile-privilege-escalation(38736)

BID - 26615


Last Updated: 27 May 2016 10:46:24