CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1588

server.cpp in MyServer 0.8.5 calls Process::setuid before calling Process::setgid and thus does not properly drop privileges, which might allow remote attackers to execute CGI programs with unintended privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/34521
http://sourceforge.net/mailarchive/forum.php?thread_id=31631045&forum_id=47875
http://www.myserverproject.net/news.php
http://osvdb.org/34521
http://sourceforge.net/mailarchive/forum.php?thread_id=31631045&forum_id=47875
http://www.myserverproject.net/news.php

Products affected by CVE-2007-1588

Myserver » Myserver » Version: 0.8.5

cpe:2.3:a:myserver:myserver:0.8.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1588

Products

Pricing

Contact Us