6.9
CVE-2007-3717
- EPSS 0.33%
- Veröffentlicht 12.07.2007 16:30:00
- Zuletzt bearbeitet 16.06.2026 22:42:35
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.241 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.9 | 3.4 | 10 |
AV:L/AC:M/Au:N/C:C/I:C/A:C
|
http://osvdb.org/36611
http://secunia.com/advisories/26024
http://secunia.com/advisories/26210
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1
http://support.avaya.com/elmodocs2/security/ASA-2007-319.htm
http://www.vupen.com/english/advisories/2007/2494
https://exchange.xforce.ibmcloud.com/vulnerabilities/35334
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772