Vulnerability Details CVE-2007-6594
IBM Lotus Notes 8 for Linux before 8.0.1 uses (1) unspecified weak permissions for the installation kit obtained through a Notes 8 download and (2) 0777 permissions for the installdata file that is created by setup.sh, which allows local users to gain privileges via a Trojan horse file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.4%
CVSS Severity
CVSS v2 Score 6.9
References
- http://osvdb.org/40933
- http://osvdb.org/40934
- http://secunia.com/advisories/27860
- http://securitytracker.com/id?1019009
- http://www-1.ibm.com/support/docview.wss?uid=swg21289273
- http://www.vupen.com/english/advisories/2007/4037
- http://osvdb.org/40933
- http://osvdb.org/40934
- http://secunia.com/advisories/27860
- http://securitytracker.com/id?1019009
- http://www-1.ibm.com/support/docview.wss?uid=swg21289273
- http://www.vupen.com/english/advisories/2007/4037
Products affected by CVE-2007-6594
-
cpe:2.3:a:ibm:lotus_notes:*