CVE-2007-2975
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute arbitrary code by accessing functionality that is exposed through DWR, as demonstrated using the downloader.
La consola de administración de Ignite Realtime Openfire versiones 3.3.0 y anteriores (anteriormente Wildfire), no especifica apropiadamente una asignación de filtros en el archivo web.xml, lo que permite a atacantes remotos alcanzar privilegios y ejecutar código arbitrario mediante el acceso a la funcionalidad que se expone por medio de DWR, como es demostrado usando el descargador.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-05-31 CVE Reserved
- 2007-06-01 CVE Published
- 2024-06-19 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://blogs.reucon.com/srt/2007/05/11/openfire_3_3_1_fixes_critical_security_issue.html | X_refsource_misc | |
| http://www.osvdb.org/36713 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.igniterealtime.org/issues/browse/JM-1049 | 2008-09-10 | |
| http://www.securityfocus.com/bid/24205 | 2008-09-10 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/25427 | 2008-09-10 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | <= 3.3.0 Search vendor "Ignite Realtime" for product "Openfire" and version " <= 3.3.0" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 2.6.0 Search vendor "Ignite Realtime" for product "Openfire" and version "2.6.0" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 2.6.1 Search vendor "Ignite Realtime" for product "Openfire" and version "2.6.1" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 2.6.2 Search vendor "Ignite Realtime" for product "Openfire" and version "2.6.2" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.0.0 Search vendor "Ignite Realtime" for product "Openfire" and version "3.0.0" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.0.1 Search vendor "Ignite Realtime" for product "Openfire" and version "3.0.1" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.1.0 Search vendor "Ignite Realtime" for product "Openfire" and version "3.1.0" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.1.1 Search vendor "Ignite Realtime" for product "Openfire" and version "3.1.1" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.2.0 Search vendor "Ignite Realtime" for product "Openfire" and version "3.2.0" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.2.1 Search vendor "Ignite Realtime" for product "Openfire" and version "3.2.1" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.2.2 Search vendor "Ignite Realtime" for product "Openfire" and version "3.2.2" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.2.3 Search vendor "Ignite Realtime" for product "Openfire" and version "3.2.3" | - |
Affected
| ||||||
| Ignite Realtime Search vendor "Ignite Realtime" | Openfire Search vendor "Ignite Realtime" for product "Openfire" | 3.2.4 Search vendor "Ignite Realtime" for product "Openfire" and version "3.2.4" | - |
Affected
| ||||||