NVD

Id
58269  
Name
CVE-2007-6273  
Description
Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the (1) Hostname tag or the (2) name attribute in the Connection tag. NOTE: there might not be any realistic circumstances in which this issue crosses privilege boundaries.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-12-07  
Modified Date
2011-03-07  
Seq
2007-6273  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
298728 58269 CVE-2007-6273 20071204 SEC Consult SA-20071204-0 :: SonicWALL Global VPN Client Format  View
298729 58269 CVE-2007-6273 http://www.sec-consult.com/305.html  View
298730 58269 CVE-2007-6273 26689  View
298731 58269 CVE-2007-6273 1019038  View
298732 58269 CVE-2007-6273 ADV-2007-4094  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57714 JVNDB-2007-006406 SonicWALL GLobal VPN Client のコンフィギュレーションファイルにおけるフォーマットストリングの脆弱性 SonicWALL GLobal VPN Client のコンフィギュレーションファイルには、フォーマットストリングの脆弱性が存在します。 CVE-2007-6273 29628 CVE-2007-6273 58269 9.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-006406.html 2007-12-07 2012-12-20 View