Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2007-1436
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-13 Mar, 2007 | 19:19
Updated At-16 Oct, 2018 | 16:38

Unspecified vulnerability in admin.pl in SQL-Ledger before 2.6.26 and LedgerSMB before 1.1.9 allows remote attackers to bypass authentication via unknown vectors that prevents a password check from occurring.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.07.5HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
CPE Matches
ledgersmb
ledgersmb
>>ledgersmb>>Versions up to 1.1.8(inclusive)
cpe:2.3:a:ledgersmb:ledgersmb:*:*:*:*:*:*:*:*
ledgersmb
ledgersmb
>>ledgersmb>>1.0.0
cpe:2.3:a:ledgersmb:ledgersmb:1.0.0:*:*:*:*:*:*:*
ledgersmb
ledgersmb
>>ledgersmb>>1.1.0
cpe:2.3:a:ledgersmb:ledgersmb:1.1.0:*:*:*:*:*:*:*
ledgersmb
ledgersmb
>>ledgersmb>>1.1.1
cpe:2.3:a:ledgersmb:ledgersmb:1.1.1:*:*:*:*:*:*:*
ledgersmb
ledgersmb
>>ledgersmb>>1.1.5
cpe:2.3:a:ledgersmb:ledgersmb:1.1.5:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>Versions up to 2.6.25(inclusive)
cpe:2.3:a:sql-ledger:sql-ledger:*:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.4
cpe:2.3:a:sql-ledger:sql-ledger:2.4.4:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.5
cpe:2.3:a:sql-ledger:sql-ledger:2.4.5:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.6
cpe:2.3:a:sql-ledger:sql-ledger:2.4.6:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.7
cpe:2.3:a:sql-ledger:sql-ledger:2.4.7:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.8
cpe:2.3:a:sql-ledger:sql-ledger:2.4.8:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.9
cpe:2.3:a:sql-ledger:sql-ledger:2.4.9:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.10
cpe:2.3:a:sql-ledger:sql-ledger:2.4.10:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.11
cpe:2.3:a:sql-ledger:sql-ledger:2.4.11:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.12
cpe:2.3:a:sql-ledger:sql-ledger:2.4.12:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.13
cpe:2.3:a:sql-ledger:sql-ledger:2.4.13:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.14
cpe:2.3:a:sql-ledger:sql-ledger:2.4.14:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.15
cpe:2.3:a:sql-ledger:sql-ledger:2.4.15:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.4.16
cpe:2.3:a:sql-ledger:sql-ledger:2.4.16:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.0
cpe:2.3:a:sql-ledger:sql-ledger:2.6.0:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.1
cpe:2.3:a:sql-ledger:sql-ledger:2.6.1:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.2
cpe:2.3:a:sql-ledger:sql-ledger:2.6.2:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.3
cpe:2.3:a:sql-ledger:sql-ledger:2.6.3:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.4
cpe:2.3:a:sql-ledger:sql-ledger:2.6.4:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.5
cpe:2.3:a:sql-ledger:sql-ledger:2.6.5:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.6
cpe:2.3:a:sql-ledger:sql-ledger:2.6.6:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.7
cpe:2.3:a:sql-ledger:sql-ledger:2.6.7:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.8
cpe:2.3:a:sql-ledger:sql-ledger:2.6.8:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.9
cpe:2.3:a:sql-ledger:sql-ledger:2.6.9:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.10
cpe:2.3:a:sql-ledger:sql-ledger:2.6.10:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.11
cpe:2.3:a:sql-ledger:sql-ledger:2.6.11:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.12
cpe:2.3:a:sql-ledger:sql-ledger:2.6.12:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.13
cpe:2.3:a:sql-ledger:sql-ledger:2.6.13:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.14
cpe:2.3:a:sql-ledger:sql-ledger:2.6.14:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.15
cpe:2.3:a:sql-ledger:sql-ledger:2.6.15:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.16
cpe:2.3:a:sql-ledger:sql-ledger:2.6.16:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.17
cpe:2.3:a:sql-ledger:sql-ledger:2.6.17:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.18
cpe:2.3:a:sql-ledger:sql-ledger:2.6.18:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.19
cpe:2.3:a:sql-ledger:sql-ledger:2.6.19:*:*:*:*:*:*:*
sql-ledger
sql-ledger
>>sql-ledger>>2.6.21
cpe:2.3:a:sql-ledger:sql-ledger:2.6.21:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-OtherPrimarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

This vulnerability is addressed in the following product updates: SQL-Ledger, 2.6.26 LedgerSMB, 1.1.9

Vendor Statements
References
HyperlinkSourceResource
http://secunia.com/advisories/24467cve@mitre.org
Vendor Advisory
http://secunia.com/advisories/24496cve@mitre.org
Patch
Vendor Advisory
http://securityreason.com/securityalert/2436cve@mitre.org
N/A
http://sourceforge.net/project/shownotes.php?release_id=494462&group_id=175965cve@mitre.org
N/A
http://www.osvdb.org/33622cve@mitre.org
N/A
http://www.osvdb.org/33623cve@mitre.org
N/A
http://www.securityfocus.com/archive/1/462375/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/bid/22889cve@mitre.org
Patch
Change History
0Changes found
Details not found