Vulnerability Details CVE-2007-4749
The cmdjob utility in Autodesk Backburner 3.0.2 allows remote attackers to execute arbitrary commands on render servers by queueing jobs that contain these commands. NOTE: this is only a vulnerability in environments in which the administrator has not followed documentation that outlines the security risks of operating Backburner on untrusted networks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 72.1%
CVSS Severity
CVSS v2 Score 6.8
References
- http://secunia.com/advisories/26797
- http://securityreason.com/securityalert/3132
- http://securitytracker.com/id?1018686
- http://www.securityfocus.com/archive/1/479193/100/0/threaded
- http://www.securityfocus.com/bid/25590
- http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-008.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36582
- http://secunia.com/advisories/26797
- http://securityreason.com/securityalert/3132
- http://securitytracker.com/id?1018686
- http://www.securityfocus.com/archive/1/479193/100/0/threaded
- http://www.securityfocus.com/bid/25590
- http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-008.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36582
Products affected by CVE-2007-4749
-
cpe:2.3:a:autodesk:backburner:3.0.2