CVE-2007-1389

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2007-1389
dynaliens 2.0 and 2.1 allows remote attackers to bypass authentication and perform certain privileged actions via a direct request for (1) validlien.php3 (2) supprlien.php3 (3) supprub.php3 (4) validlien.php3 (5) confsuppr.php3 (6) modiflien.php3, or (7) confmodif.php3 in admin/.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://forums.avenir-geopolitique.net/viewtopic.php?t=2722 Exploit
http://www.securityfocus.com/bid/22873
http://securityreason.com/securityalert/2403
http://www.securityfocus.com/archive/1/462221/100/0/threaded
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dynaliens:dynaliens:2.1:*:*:*:*:*:*:*
cpe:2.3:a:dynaliens:dynaliens:2.0:*:*:*:*:*:*:*
Information

Published : 2007-03-10 14:19

Updated : 2018-10-16 09:38

NVD link : CVE-2007-1389

Mitre link : CVE-2007-1389

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

dynaliens

  • dynaliens