6.9

CVE-2007-3717

EPSS 0.05%
Veröffentlicht 12.07.2007 16:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sun ≫ Sunos Version5.8

Sun ≫ Sunos Version5.9

Sun ≫ Sunos Version5.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.111

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

http://osvdb.org/36611

http://secunia.com/advisories/26024

Vendor Advisory

http://secunia.com/advisories/26210

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1

Patch

http://support.avaya.com/elmodocs2/security/ASA-2007-319.htm

http://www.vupen.com/english/advisories/2007/2494

https://exchange.xforce.ibmcloud.com/vulnerabilities/35334

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772

https://nvd.nist.gov/vuln/detail/CVE-2007-3717

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3717

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3717

EUVD