6.9

CVE-2007-3717

EPSS 0.05%
Published 12.07.2007 16:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225.

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Sun ≫ Sunos Version5.8

Sun ≫ Sunos Version5.9

Sun ≫ Sunos Version5.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.111

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

http://osvdb.org/36611

http://secunia.com/advisories/26024

Vendor Advisory

http://secunia.com/advisories/26210

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1

Patch

http://support.avaya.com/elmodocs2/security/ASA-2007-319.htm

http://www.vupen.com/english/advisories/2007/2494

https://exchange.xforce.ibmcloud.com/vulnerabilities/35334

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772

https://nvd.nist.gov/vuln/detail/CVE-2007-3717

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3717

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3717

EUVD