CVE-2007-5927
Severity:
Pending analysis
Type:
CWE-22
Path Traversal
Publication date:
10/11/2007
Last modified:
05/09/2008
Description
Directory traversal vulnerability in OpenBase 10.0.5 and earlier allows remote authenticated users to create files with arbitrary contents via a .. (dot dot) in the first argument to the GlobalLog stored procedure. NOTE: this can be leveraged to execute arbitrary code using CVE-2007-5926.
Impact
Base Score 2.0
9.00
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:openbase_international_ltd:openbase:*:*:*:*:*:*:*:* | 10.0.5 (including) |
To consult the complete list of CPE names with products and versions, see this page