Vulnerability Description
Unspecified vulnerability in GONICUS System Administration (GOsa) before 2.5.8 allows remote authenticated users to modify certain settings, including the admin password, via crafted POST requests.
CVSS Score
9.0
HIGH
AV:N/AC:L/Au:S/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gonicus | Gonicus System Administration | <= 2.5.7 |
References
- http://oss.gonicus.de/pipermail/gosa/2007-January/002650.htmlPatch
- http://osvdb.org/32821
- http://secunia.com/advisories/23749Vendor Advisory
- http://www.vupen.com/english/advisories/2007/0207
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31516
- http://oss.gonicus.de/pipermail/gosa/2007-January/002650.htmlPatch
- http://osvdb.org/32821
- http://secunia.com/advisories/23749Vendor Advisory
- http://www.vupen.com/english/advisories/2007/0207
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31516
FAQ
What is CVE-2007-0313?
CVE-2007-0313 is a vulnerability with a CVSS score of 9.0 (HIGH). Unspecified vulnerability in GONICUS System Administration (GOsa) before 2.5.8 allows remote authenticated users to modify certain settings, including the admin password, via crafted POST requests.
How severe is CVE-2007-0313?
CVE-2007-0313 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0313?
Check the references section above for vendor advisories and patch information. Affected products include: Gonicus Gonicus System Administration.