NVD

Id
56649  
Name
CVE-2007-4529  
Description
The WebAdmin interface in TeamSpeak Server 2.0.20.1 allows remote authenticated users with the ServerAdmin flag to assign Registered users certain privileges, resulting in a privilege set that extends beyond that ServerAdmin"s own servers, as demonstrated by the (1) AdminAddServer, (2) AdminDeleteServer, (3) AdminStartServer, and (4) AdminStopServer privileges; and administration of arbitrary virtual servers via a request to a .tscmd URI with a modified serverid parameter, as demonstrated by (a) add_server.tscmd, (b) ask_delete_server.tscmd, (c) start_server.tscmd, and (d) stop_server.tscmd.  
Reject
 
CVSS Version
2  
CVSS Score
8.5  
Severity
High  
CVSS Base Score
8.5  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-08-24  
Modified Date
2008-11-15  
Seq
2007-4529  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
288674 56649 CVE-2007-4529 20070511 Teamspeak Server 2.0.20.1 Vulnerabilities  View
288675 56649 CVE-2007-4529 http://securityvulns.com/Rdocument6.html  View
288676 56649 CVE-2007-4529 20070823 Re: TeamSpeak 2 Server Vulnerabilities?  View
288677 56649 CVE-2007-4529 23935  View
288678 56649 CVE-2007-4529 teamspeak-webadmin-privilege-escalation(34254)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57331 JVNDB-2007-006023 TeamSpeak Server の WebAdmin インターフェースにおける登録したユーザに特定の権限を割り当てられる脆弱性 TeamSpeak Server の WebAdmin インターフェースには、登録したユーザに特定の権限を割り当てられる脆弱性が存在します。 CVE-2007-4529 27884 CVE-2007-4529 56649 8.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-006023.html 2007-08-24 2012-12-20 View