Vulnerability Details CVE-2007-2923
The launch method in the LocalExec ActiveX control (LocalExec.ocx) in Novell exteNd Director 4.1 and Portal Services allows remote attackers to execute arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 85.8%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/37318
- http://secunia.com/advisories/25710
- http://www.kb.cert.org/vuls/id/793433
- http://www.novell.com/documentation/nedse41/readmesp2.txt
- http://www.securityfocus.com/bid/24493
- http://www.securitytracker.com/id?1018258
- http://www.vupen.com/english/advisories/2007/2235
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34898
- https://secure-support.novell.com/KanisaPlatform/Publishing/360/3169416_f.SAL_Public.html
- http://osvdb.org/37318
- http://secunia.com/advisories/25710
- http://www.kb.cert.org/vuls/id/793433
- http://www.novell.com/documentation/nedse41/readmesp2.txt
- http://www.securityfocus.com/bid/24493
- http://www.securitytracker.com/id?1018258
- http://www.vupen.com/english/advisories/2007/2235
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34898
- https://secure-support.novell.com/KanisaPlatform/Publishing/360/3169416_f.SAL_Public.html
Products affected by CVE-2007-2923
-
cpe:2.3:a:novell:extend_director:4.1