Vulnerability Details CVE-2007-4427
Unspecified vulnerability in the login page redirection logic in the Cache' Server Page (CSP) implementation in InterSystems Cache' 2007.1.0.369.0 and 2007.1.1.420.0 allows remote authenticated users to modify data on a server, related to encoding of certain parameter values by this redirection logic, aka MAK2116.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.5%
CVSS Severity
CVSS v2 Score 3.5
References
- http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/57d7c80dde26fda3/7845e246da5b095b
- http://osvdb.org/40178
- http://secunia.com/advisories/26541
- http://www.intersystems.com/support/cflash/2007announce.html
- http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/57d7c80dde26fda3/7845e246da5b095b
- http://osvdb.org/40178
- http://secunia.com/advisories/26541
- http://www.intersystems.com/support/cflash/2007announce.html
Products affected by CVE-2007-4427
-
cpe:2.3:a:intersystems:cache_database:2007.1.0.369.0
-
cpe:2.3:a:intersystems:cache_database:2007.1.1.420.0