Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6182

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-6182
Last Modified 15 Nov 2008 02:03:40
Published 29 Nov 2007 07:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-6182

Summary

The responder program in ISPsystem ISPmanager (aka ISPmgr) 4.2.15.1 allows local users to gain privileges via shell metacharacters in command line arguments.

Vulnerable Systems

Application

  • Growth Ispmanager 4.0


References

MISC - http://www.fortconsult.net/images/pdf/advisories/ispmgr_nov2007.pdf

SECUNIA - 27585

OSVDB - 42337

MISC - http://ispsystem.com/en/support/changelog/ispmgr.html?all=yes

XF - ispmgr-responder-privilege-escalation(38564)

BID - 26503


Last Updated: 27 May 2016 10:46:24