CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In August 2007(Gain Privilege)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2007-4649 264 +Priv 2007-08-31 2017-07-28
7.2
Admin Local Low Not required Complete Complete Complete
MicroWorld eScan Virus Control 9.0.722.1, Anti-Virus 9.0.722.1, and Internet Security 9.0.722.1 use weak permissions (Everyone:Full Control) for their installation directory trees, which allows local users to gain privileges by replacing application files, as demonstrated by traysser.exe.
2 CVE-2007-4648 119 Overflow +Priv 2007-08-31 2018-10-15
7.2
Admin Local Low Not required Complete Complete Complete
The nvcoaft51 driver in Norman Virus Control (NVC) 5.82 uses weak permissions (unrestricted write access) for the NvcOa device, which allows local users to gain privileges by (1) triggering a buffer overflow in a kernel pool via a string argument to ioctl 0xBF67201C; or by (2) sending a crafted KEVENT structure through ioctl 0xBF672028 to overwrite arbitrary memory locations.
3 CVE-2007-4591 DoS +Priv 2007-08-29 2017-07-28
6.9
Admin Local Medium Not required Complete Complete Complete
vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) and possibly gain privileges by sending a small file buffer size value to the FsSetVolumeInformation IOCTL handler with an FsSetFileInformation subcode.
4 CVE-2007-4564 264 +Priv 2007-08-27 2017-07-28
4.6
User Local Low Not required Partial Partial Partial
Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges.
5 CVE-2007-4563 264 +Priv 2007-08-27 2017-07-28
4.4
User Local Medium Not required Partial Partial Partial
Cosminexus Manager in Cosminexus Application Server 06-50 and later might assign the wrong user's group permissions to logical J2EE server processes, which allows local users to gain privileges.
6 CVE-2007-4500 +Priv 2007-08-23 2008-09-05
6.9
Admin Local Medium Not required Complete Complete Complete
Unspecified vulnerability in TunnelRunner in SSHKeychain before 0.8.2 beta, and possibly later versions, allows local users to gain privileges via unspecified vectors.
7 CVE-2007-4432 +Priv 2007-08-20 2018-10-30
4.6
User Local Low Not required Partial Partial Partial
Untrusted search path vulnerability in the wrapper scripts for the (1) rug, (2) zen-updater, (3) zen-installer, and (4) zen-remover programs on SUSE Linux 10.1 and Enterprise 10 allows local users to gain privileges via modified (a) LD_LIBRARY_PATH and (b) MONO_GAC_PREFIX environment variables.
8 CVE-2007-4415 +Priv 2007-08-18 2018-10-15
6.8
Admin Local Low Single system Complete Complete Complete
Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 InstallShield (IS) release, uses weak permissions for cvpnd.exe (Modify granted to Interactive Users), which allows local users to gain privileges via a modified cvpnd.exe.
9 CVE-2007-4414 +Priv 2007-08-18 2017-07-28
6.8
Admin Local Low Single system Complete Complete Complete
Cisco VPN Client on Windows before 4.8.02.0010 allows local users to gain privileges by enabling the "Start Before Logon" (SBL) and Microsoft Dial-Up Networking options, and then interacting with the dial-up networking dialog box.
10 CVE-2007-4406 +Priv 2007-08-18 2018-10-15
7.5
None Remote Low Not required Partial Partial Partial
ircu 2.10.12.01 through 2.10.12.04 does not remove ops privilege after a join from a server with an older timestamp (TS), which allows remote attackers to gain control of a channel during a split.
11 CVE-2007-4395 +Priv 2007-08-17 2018-10-30
7.6
Admin Remote High Not required Complete Complete Complete
Multiple unspecified vulnerabilities in the Role Based Access Control (RBAC) functionality in Sun Solaris 8 allow remote attackers who know the password for a role to gain privileges via that role.
12 CVE-2007-4390 264 +Priv 2007-08-17 2018-10-15
7.2
Admin Local Low Not required Complete Complete Complete
The Command Line Interface (CLI), aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command.
13 CVE-2007-4380 +Priv 2007-08-16 2017-07-28
7.2
Admin Local Low Not required Complete Complete Complete
Aclient in Symantec Altiris Deployment Solution 6 before 6.8 SP2 (6.8.378) allows local users to gain local System privileges via the Log File Viewer.
14 CVE-2007-4355 Overflow +Priv 2007-08-14 2017-07-28
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in the at program on IBM AIX 5.3 allows local users to gain privileges via unspecified vectors.
15 CVE-2007-4354 Overflow +Priv 2007-08-14 2017-07-28
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in fileplace in bos.perf.tools in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors.
16 CVE-2007-4353 Overflow +Priv 2007-08-14 2017-07-28
6.9
Admin Local Medium Not required Complete Complete Complete
Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local users in the system group to gain root privileges via unspecified vectors involving the (1) chpath, (2) rmpath, and (3) devinstall programs in bos.rte.methods.
17 CVE-2007-4315 264 +Priv Bypass 2007-08-13 2012-10-18
6.9
Admin Local Medium Not required Complete Complete Complete
The AMD ATI atidsmxx.sys 3.0.502.0 driver on Windows Vista allows local users to bypass the driver signing policy, write to arbitrary kernel memory locations, and thereby gain privileges via unspecified vectors, as demonstrated by "Purple Pill".
18 CVE-2007-4308 DoS +Priv 2007-08-13 2018-10-15
1.9
None Local Medium Not required None None Partial
The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges.
19 CVE-2007-4303 +Priv Bypass 2007-08-13 2008-09-05
6.2
Admin Local High Not required Complete Complete Complete
Multiple race conditions in (1) certain rules and (2) argument copying during VM protection, in CerbNG for FreeBSD 4.8 allow local users to defeat system call interposition and possibly gain privileges or bypass auditing, as demonstrated by modifying command lines in log-exec.cb.
20 CVE-2007-4302 +Priv Bypass 2007-08-13 2008-09-05
6.2
Admin Local High Not required Complete Complete Complete
Multiple race conditions in certain system call wrappers in Generic Software Wrappers Toolkit (GSWTK) allow local users to defeat system call interposition and possibly gain privileges or bypass auditing.
21 CVE-2007-4275 +Priv 2007-08-18 2017-07-28
6.9
Admin Local Medium Not required Complete Complete Complete
Multiple untrusted search path vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain privileges via certain vectors related to (1) DB2 instance or FMP startup on Linux and Solaris; (2) exec of executables while running as root on non-Windows systems, as demonstrated by AIX; and unspecified vectors involving (3) db2licm and (4) db2pd.
22 CVE-2007-4270 +Priv 2007-08-18 2017-07-28
6.9
Admin Local Medium Not required Complete Complete Complete
Multiple race conditions in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain root privileges via a symlink attack on certain files.
23 CVE-2007-4238 +Priv 2007-08-08 2008-11-15
6.9
Admin Local Medium Not required Complete Complete Complete
AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privileges to gain root privileges by modifying pioinit.
24 CVE-2007-4237 Overflow +Priv 2007-08-08 2008-11-15
6.9
Admin Local Medium Not required Complete Complete Complete
Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileges.
25 CVE-2007-4236 Overflow +Priv 2007-08-08 2008-09-05
6.9
Admin Local Medium Not required Complete Complete Complete
Buffer overflow in lpd in bos.rte.printers in AIX 5.2 and 5.3 allows local users with printq group privileges to gain root privileges.
26 CVE-2007-4230 +Priv 2007-08-08 2018-10-15
7.5
User Remote Low Not required Partial Partial Partial
** DISPUTED ** BellaBiblio allows remote attackers to gain administrative privileges via a bellabiblio cookie with the value "administrator." NOTE: this issue is disputed by CVE and multiple third parties because the cookie value must be an MD5 hash.
27 CVE-2007-4216 20 +Priv 2007-08-21 2018-10-15
7.2
Admin Local Low Not required Complete Complete Complete
vsdatant.sys 6.5.737.0 in Check Point Zone Labs ZoneAlarm before 7.0.362 allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in a METHOD_NEITHER (1) IOCTL 0x8400000F or (2) IOCTL 0x84000013 request, which can be used to overwrite arbitrary memory locations.
28 CVE-2007-4206 +Priv 2007-08-07 2017-07-28
4.4
User Local Medium Not required Partial Partial Partial
Kaspersky Anti-Spam 3.0 MP1 before Critical Fix 2 (3.0.278.4) sets incorrect permissions for application files in certain upgrade scenarios, which might allow local users to gain privileges.
29 CVE-2007-4124 +Priv +Info 2007-08-01 2017-07-28
4.9
None Remote Medium Single system Partial Partial None
The session failover function in Cosminexus Component Container in Cosminexus 6, 6.7, and 7 before 20070731, as used in multiple Hitachi products, can use session data for the wrong user under unspecified conditions, which might allow remote authenticated users to obtain sensitive information, corrupt another user's session data, and possibly gain privileges.
30 CVE-2007-3851 399 +Priv 2007-08-13 2017-09-28
6.0
None Local High Single system Complete Complete Complete
The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer.
Total number of vulnerabilities : 30   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.