CVE-2007-2003

InoutMailingListManager 3.1 and earlier sends a Location redirect header but does not exit after an authorization check fails, which allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by ignoring the redirect.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/24842
http://www.vupen.com/english/advisories/2007/1345
https://www.exploit-db.com/exploits/3702
http://secunia.com/advisories/24842
http://www.vupen.com/english/advisories/2007/1345
https://www.exploit-db.com/exploits/3702

Configurations

Configuration 1 (hide)

cpe:2.3:a:inoutmailinglistmanager:inoutmailinglistmanager:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:29

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/24842 -~~	() http://secunia.com/advisories/24842 -
References	~~() http://www.vupen.com/english/advisories/2007/1345 -~~	() http://www.vupen.com/english/advisories/2007/1345 -
References	~~() https://www.exploit-db.com/exploits/3702 -~~	() https://www.exploit-db.com/exploits/3702 -

Information

Published : 2007-04-12 19:19

Updated : 2025-04-09 00:30

NVD link : CVE-2007-2003

Mitre link : CVE-2007-2003

CVE.ORG link : CVE-2007-2003

JSON object : View

Products Affected

inoutmailinglistmanager

inoutmailinglistmanager

CWE

NVD-CWE-Other

{"id": "CVE-2007-2003", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2007-04-12T19:19:00.000", "references": [{"url": "http://secunia.com/advisories/24842", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/1345", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/3702", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/24842", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/1345", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.exploit-db.com/exploits/3702", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "InoutMailingListManager 3.1 and earlier sends a Location redirect header but does not exit after an authorization check fails, which allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by ignoring the redirect."}, {"lang": "es", "value": "InoutMailingListManager 3.1 y versiones anteriores env\u00eda una cabecera de ubicaci\u00f3n de redirecci\u00f3n pero no termina despu\u00e9s de que un fallo de comprobaci\u00f3n de autorizaci\u00f3n, lo cual permite a atacantes remotos acceder a funcionalidad restringida concreta y promocionar y ejecutar c\u00f3digo PHP de su elecci\u00f3n, al ignorar la redirecci\u00f3n."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:inoutmailinglistmanager:inoutmailinglistmanager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "467075AE-509A-4FC4-AF0A-7C29556EDEEB", "versionEndIncluding": "3.1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}