Vulnerability Details : CVE-2007-6480
The Oracle database component in Sun Management Center (Sun MC) 3.6.1, 3.6, and 3.5 Update 1 has a default account, which allows remote attackers to obtain database access and execute arbitrary code.
Vulnerability category: Execute code
Exploit prediction scoring system (EPSS) score for CVE-2007-6480
Probability of exploitation activity in the next 30 days: 4.95%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 93 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-6480
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
9.4
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:N |
10.0
|
9.2
|
NIST |
References for CVE-2007-6480
-
http://www.securityfocus.com/bid/26948
-
http://www.securitytracker.com/id?1019119
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201508-1
-
http://www.vupen.com/english/advisories/2007/4268
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103152-1
Patch
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/39137
Products affected by CVE-2007-6480
- cpe:2.3:a:sun:management\+center:3.6.1:*:sparc:*:*:*:*:*
- cpe:2.3:a:sun:management\+center:3.6:*:sparc:*:*:*:*:*
- cpe:2.3:a:sun:management\+center:3.5_update_1:*:sparc:*:*:*:*:*