Vulnerability Details : CVE-2007-5057
NetSupport Manager Client before 10.20.0004 allows remote attackers to bypass the (1) basic and (2) authentication schemes by spoofing the NetSupport Manager.
Vulnerability category: BypassGain privilege
Products affected by CVE-2007-5057
- cpe:2.3:a:netsupport:netsupport_manager_client:5.03:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.05:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:7.10:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:8.00:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:10.00:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:10.20:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.30:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.31:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:8.10:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:8.50:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:8.60:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.02:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.02_f1:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:6.11:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:7.01:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:9.50:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:9.60:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.00:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:5.01:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:6.00:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:6.10:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:9.00:*:*:*:*:*:*:*
- cpe:2.3:a:netsupport:netsupport_manager_client:9.10:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-5057
1.83%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 89 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-5057
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2007-5057
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-5057
-
http://www.securityfocus.com/archive/1/480240/100/0/threaded
-
http://securityreason.com/securityalert/3163
-
http://www.securitytracker.com/id?1018732
-
http://www.netsupportsoftware.com/support/td.asp?td=543&Site=nsltd&Lang=
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/36726
-
http://www.securityfocus.com/bid/25761
Jump to