CVE-2007-1436

Published Mar 13, 2007
Last updated 6 years ago
CVSS info 7.5
Overview

Description: Unspecified vulnerability in admin.pl in SQL-Ledger before 2.6.26 and LedgerSMB before 1.1.9 allows remote attackers to bypass authentication via unknown vectors that prevents a password check from occurring.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Evaluator

Comment: -
Impact: -
Solution: -
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ledgersmb:ledgersmb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F7858BB-0570-4E97-BB32-536D30DC4525",
            "versionEndIncluding": "1.1.8"
          },
          {
            "criteria": "cpe:2.3:a:ledgersmb:ledgersmb:1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBCE1BDC-52DF-4555-AB36-3A0AD4DF6EFA"
          },
          {
            "criteria": "cpe:2.3:a:ledgersmb:ledgersmb:1.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F92E614-45B3-4744-8CFB-2F4387242B1A"
          },
          {
            "criteria": "cpe:2.3:a:ledgersmb:ledgersmb:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4E199FF-805A-4473-8E15-B712132E0BE8"
          },
          {
            "criteria": "cpe:2.3:a:ledgersmb:ledgersmb:1.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEF4DD67-2815-418E-B6C8-F9ABDA1BA6DD"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E1259FE-76CA-4BDB-A860-B1309D7B64B9",
            "versionEndIncluding": "2.6.25"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96A468DE-4EA0-40E5-848C-9A046E9EE073"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1AB67B38-EB93-4F07-B57D-20D839036341"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA5C8095-CDB8-40D3-8AE1-0F31B62DA859"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E93E88F3-AAB8-424A-909D-187490A569DA"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9379DECB-18FB-47FF-B6CA-FEDE70BD0090"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DE7C358-802F-47B9-B905-72077F0C27D8"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08C91CB6-C4C3-4964-875B-868FCF2AFB33"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AA97417-7192-4BC7-8C6D-CF2F311491AA"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB579DCA-1C5C-4EA3-9EFA-B440D64B771F"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51CD497C-6B27-440C-ADD3-9CCE7835B512"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8647ABC-1F51-4E3C-A362-ECE15961F7AA"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5587FE38-7533-45CD-B238-88691B8B0ACD"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.4.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1942D52F-6877-4B81-9157-D5CAB707D66D"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FFBA608E-699C-4D60-AF1F-1BBA3862A47B"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5699B67-86B0-47FE-90D9-D409F6FABC15"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D11204D-B57D-40E6-B8FE-59F48BE8EAD7"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C31AB41D-86C9-4063-9D63-DEF9C463CB6A"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "388D505B-8227-4C5F-93BA-B37B7FCE08A6"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9895620D-BABD-4A4A-A196-BC5FCC549FE7"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A067D306-200B-4EF6-A58F-0222FDA16C7F"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46865444-8B28-4DBA-8086-E2C5B5E4D33D"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C671286-D9AC-46F0-866F-B530C25901FC"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE5762E9-A65D-43D1-AE6F-D00469F2C1F8"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A017D9C-78DE-4D35-AE6E-032311F8CF22"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0F9DB72-874F-4369-AE14-EF33B98574E1"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08A78E62-B64F-4A3F-A89A-86D19E7FA403"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB32ED5F-490C-4C72-96EF-FE1B239A1841"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE241D6D-6802-4BA6-B526-15824976C8BC"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2EC578E3-D2DF-497B-8D25-AE64AA39DEBA"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DAE416E-30A9-4AB3-B968-BB17EB1889F8"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12BFEF80-BCC4-44BC-A7B6-D688F1688A96"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD7E5E53-3B67-46CA-A85F-37A93958A4BD"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD66FE58-EF0E-4F02-9FDB-8AB5C715FCD6"
          },
          {
            "criteria": "cpe:2.3:a:sql-ledger:sql-ledger:2.6.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD3EDFA2-8A21-4331-9715-3204DAA22845"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References
